UDT-003: Registro de Usuarios (admin-only) + fix JWT claim mapping #4

Merged

dmolinari merged 3 commits from feature/UDT-003 into main

2026-04-15 14:23:53 +00:00

Author	SHA1	Message	Date
dmolinari	bce591e63c	fix(auth): preserve JWT claim names in bearer middleware JwtBearerOptions.MapInboundClaims defaulted to true, which mapped the 'sub' claim to ClaimTypes.NameIdentifier in HttpContext.User. Logout endpoint read User.FindFirst("sub") and got null, returning 401 for any authenticated caller. Fix: set MapInboundClaims=false and pin NameClaimType="name" so the JWT claims land in the principal with their original names, aligning with how JwtService.GetPrincipalFromExpiredToken (used by refresh) already consumes them. Unblocks Login_Refresh_Logout_FullFlow integration test (15/15 green).	2026-04-15 11:03:15 -03:00
dmolinari	dd99e5cc69	feat(web): UDT-003 formulario de alta de usuarios (admin) Agrega CreateUserPage con UserForm (react-hook-form + Zod), hook useCreateUser (TanStack Query mutation), ruta /users/new protegida y entrada en AppSidebar. Incluye tests Vitest: UserForm (9 casos) y useCreateUser (3 casos).	2026-04-15 10:57:11 -03:00
dmolinari	3d598faffc	feat(api): UDT-003 registro de usuarios — backend completo (Phases 1-6) - Domain: Usuario.ForCreation factory, UsernameAlreadyExistsException, IUsuarioRepository extendido - Application: CreateUsuarioCommand/Validator/Handler, UsuarioCreatedDto, AuthOptions password policy - Infrastructure: UsuarioRepository.ExistsByUsernameAsync + AddAsync (INSERT OUTPUT INSERTED.Id), RoleClaimType="rol" en TokenValidationParameters - Api: UsuariosController POST api/v1/users [Authorize(Roles="admin")], ExceptionFilter mapea UsernameAlreadyExistsException + SqlException 2627 → 409 - Tests (unit): 43 tests — 33 validator + 10 handler (107 total, green) - Tests (integration): 7 tests CreateUsuarioEndpoint — 401/403/400/201/409/race/e2e (green) - Fix: TestWebAppFactory.ConfigureTestServices reemplaza SqlConnectionFactory singleton con CS de test correcto	2026-04-15 10:47:48 -03:00

Author

SHA1

Message

Date

dmolinari

bce591e63c

fix(auth): preserve JWT claim names in bearer middleware

JwtBearerOptions.MapInboundClaims defaulted to true, which mapped the
'sub' claim to ClaimTypes.NameIdentifier in HttpContext.User. Logout
endpoint read User.FindFirst("sub") and got null, returning 401 for
any authenticated caller.

Fix: set MapInboundClaims=false and pin NameClaimType="name" so the
JWT claims land in the principal with their original names, aligning
with how JwtService.GetPrincipalFromExpiredToken (used by refresh)
already consumes them.

Unblocks Login_Refresh_Logout_FullFlow integration test (15/15 green).

2026-04-15 11:03:15 -03:00

dmolinari

dd99e5cc69

feat(web): UDT-003 formulario de alta de usuarios (admin)

Agrega CreateUserPage con UserForm (react-hook-form + Zod), hook useCreateUser
(TanStack Query mutation), ruta /users/new protegida y entrada en AppSidebar.
Incluye tests Vitest: UserForm (9 casos) y useCreateUser (3 casos).

2026-04-15 10:57:11 -03:00

dmolinari

3d598faffc

feat(api): UDT-003 registro de usuarios — backend completo (Phases 1-6)

- Domain: Usuario.ForCreation factory, UsernameAlreadyExistsException, IUsuarioRepository extendido
- Application: CreateUsuarioCommand/Validator/Handler, UsuarioCreatedDto, AuthOptions password policy
- Infrastructure: UsuarioRepository.ExistsByUsernameAsync + AddAsync (INSERT OUTPUT INSERTED.Id), RoleClaimType="rol" en TokenValidationParameters
- Api: UsuariosController POST api/v1/users [Authorize(Roles="admin")], ExceptionFilter mapea UsernameAlreadyExistsException + SqlException 2627 → 409
- Tests (unit): 43 tests — 33 validator + 10 handler (107 total, green)
- Tests (integration): 7 tests CreateUsuarioEndpoint — 401/403/400/201/409/race/e2e (green)
- Fix: TestWebAppFactory.ConfigureTestServices reemplaza SqlConnectionFactory singleton con CS de test correcto

2026-04-15 10:47:48 -03:00

UDT-003: Registro de Usuarios (admin-only) + fix JWT claim mapping #4

3 Commits