@polymorphism-tech/morph-spec 1.0.0

package/content/.morph/templates/integrations/asaas-webhook.cs

@@ -0,0 +1,351 @@
+// ==============================================================================
+// MORPH-SPEC - Asaas Webhook Controller Template
+// Controller para receber webhooks do Asaas
+// ==============================================================================
+
+using System.Text.Json.Serialization;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.Extensions.Logging;
+
+namespace {{Namespace}}.Web.Controllers;
+
+// ==============================================================================
+// CONTROLLER
+// ==============================================================================
+
+[ApiController]
+[Route("api/webhooks/asaas")]
+public class AsaasWebhookController : ControllerBase
+{
+    private readonly IAsaasWebhookHandler _webhookHandler;
+    private readonly ILogger<AsaasWebhookController> _logger;
+
+    public AsaasWebhookController(
+        IAsaasWebhookHandler webhookHandler,
+        ILogger<AsaasWebhookController> logger)
+    {
+        _webhookHandler = webhookHandler;
+        _logger = logger;
+    }
+
+    [HttpPost]
+    public async Task<IActionResult> HandleWebhook([FromBody] AsaasWebhookPayload payload)
+    {
+        _logger.LogInformation("Received Asaas webhook: {Event}", payload.Event);
+
+        try
+        {
+            await _webhookHandler.HandleAsync(payload);
+            return Ok();
+        }
+        catch (Exception ex)
+        {
+            _logger.LogError(ex, "Error processing Asaas webhook: {Event}", payload.Event);
+            // Retorna 200 para evitar retentativas desnecessárias
+            // O erro será tratado internamente
+            return Ok();
+        }
+    }
+}
+
+// ==============================================================================
+// WEBHOOK HANDLER INTERFACE
+// ==============================================================================
+
+public interface IAsaasWebhookHandler
+{
+    Task HandleAsync(AsaasWebhookPayload payload, CancellationToken ct = default);
+}
+
+// ==============================================================================
+// WEBHOOK HANDLER IMPLEMENTATION
+// ==============================================================================
+
+public class AsaasWebhookHandler : IAsaasWebhookHandler
+{
+    private readonly IPaymentService _paymentService;
+    private readonly ISubscriptionService _subscriptionService;
+    private readonly ILogger<AsaasWebhookHandler> _logger;
+
+    public AsaasWebhookHandler(
+        IPaymentService paymentService,
+        ISubscriptionService subscriptionService,
+        ILogger<AsaasWebhookHandler> logger)
+    {
+        _paymentService = paymentService;
+        _subscriptionService = subscriptionService;
+        _logger = logger;
+    }
+
+    public async Task HandleAsync(AsaasWebhookPayload payload, CancellationToken ct = default)
+    {
+        _logger.LogInformation("Processing Asaas webhook: {Event} for {PaymentId}",
+            payload.Event, payload.Payment?.Id ?? "N/A");
+
+        switch (payload.Event)
+        {
+            // =========================================================
+            // PAYMENT EVENTS
+            // =========================================================
+
+            case AsaasWebhookEvents.PaymentCreated:
+                await HandlePaymentCreatedAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.PaymentAwaitingRiskAnalysis:
+                await HandlePaymentAwaitingRiskAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.PaymentPending:
+                await HandlePaymentPendingAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.PaymentConfirmed:
+            case AsaasWebhookEvents.PaymentReceived:
+                await HandlePaymentConfirmedAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.PaymentOverdue:
+                await HandlePaymentOverdueAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.PaymentRefunded:
+            case AsaasWebhookEvents.PaymentRefundInProgress:
+                await HandlePaymentRefundedAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.PaymentChargebackRequested:
+            case AsaasWebhookEvents.PaymentChargebackDispute:
+                await HandlePaymentChargebackAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.PaymentDeleted:
+                await HandlePaymentDeletedAsync(payload, ct);
+                break;
+
+            // =========================================================
+            // SUBSCRIPTION EVENTS
+            // =========================================================
+
+            case AsaasWebhookEvents.SubscriptionCreated:
+                await HandleSubscriptionCreatedAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.SubscriptionUpdated:
+                await HandleSubscriptionUpdatedAsync(payload, ct);
+                break;
+
+            case AsaasWebhookEvents.SubscriptionDeleted:
+                await HandleSubscriptionDeletedAsync(payload, ct);
+                break;
+
+            default:
+                _logger.LogWarning("Unhandled Asaas webhook event: {Event}", payload.Event);
+                break;
+        }
+    }
+
+    // =========================================================================
+    // PAYMENT HANDLERS
+    // =========================================================================
+
+    private async Task HandlePaymentCreatedAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogInformation("Payment created: {PaymentId}", payload.Payment.Id);
+        await _paymentService.SyncPaymentAsync(payload.Payment.Id, ct);
+    }
+
+    private async Task HandlePaymentAwaitingRiskAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogInformation("Payment awaiting risk analysis: {PaymentId}", payload.Payment.Id);
+        await _paymentService.UpdateStatusAsync(payload.Payment.Id, PaymentStatus.AwaitingRisk, ct);
+    }
+
+    private async Task HandlePaymentPendingAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogInformation("Payment pending: {PaymentId}", payload.Payment.Id);
+        await _paymentService.UpdateStatusAsync(payload.Payment.Id, PaymentStatus.Pending, ct);
+    }
+
+    private async Task HandlePaymentConfirmedAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogInformation("Payment confirmed: {PaymentId}, Value: {Value}",
+            payload.Payment.Id, payload.Payment.Value);
+
+        await _paymentService.ConfirmPaymentAsync(payload.Payment.Id, ct);
+    }
+
+    private async Task HandlePaymentOverdueAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogWarning("Payment overdue: {PaymentId}", payload.Payment.Id);
+        await _paymentService.MarkOverdueAsync(payload.Payment.Id, ct);
+    }
+
+    private async Task HandlePaymentRefundedAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogInformation("Payment refunded: {PaymentId}", payload.Payment.Id);
+        await _paymentService.RefundPaymentAsync(payload.Payment.Id, ct);
+    }
+
+    private async Task HandlePaymentChargebackAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogWarning("Payment chargeback: {PaymentId}", payload.Payment.Id);
+        await _paymentService.HandleChargebackAsync(payload.Payment.Id, ct);
+    }
+
+    private async Task HandlePaymentDeletedAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        if (payload.Payment is null) return;
+
+        _logger.LogInformation("Payment deleted: {PaymentId}", payload.Payment.Id);
+        await _paymentService.DeletePaymentAsync(payload.Payment.Id, ct);
+    }
+
+    // =========================================================================
+    // SUBSCRIPTION HANDLERS
+    // =========================================================================
+
+    private async Task HandleSubscriptionCreatedAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        // Subscription events may not have payment data
+        _logger.LogInformation("Subscription created via webhook");
+        // Implement as needed
+    }
+
+    private async Task HandleSubscriptionUpdatedAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        _logger.LogInformation("Subscription updated via webhook");
+        // Implement as needed
+    }
+
+    private async Task HandleSubscriptionDeletedAsync(AsaasWebhookPayload payload, CancellationToken ct)
+    {
+        _logger.LogInformation("Subscription deleted via webhook");
+        // Implement as needed
+    }
+}
+
+// ==============================================================================
+// WEBHOOK EVENTS
+// ==============================================================================
+
+public static class AsaasWebhookEvents
+{
+    // Payment events
+    public const string PaymentCreated = "PAYMENT_CREATED";
+    public const string PaymentAwaitingRiskAnalysis = "PAYMENT_AWAITING_RISK_ANALYSIS";
+    public const string PaymentPending = "PAYMENT_PENDING";
+    public const string PaymentConfirmed = "PAYMENT_CONFIRMED";
+    public const string PaymentReceived = "PAYMENT_RECEIVED";
+    public const string PaymentOverdue = "PAYMENT_OVERDUE";
+    public const string PaymentRefunded = "PAYMENT_REFUNDED";
+    public const string PaymentRefundInProgress = "PAYMENT_REFUND_IN_PROGRESS";
+    public const string PaymentChargebackRequested = "PAYMENT_CHARGEBACK_REQUESTED";
+    public const string PaymentChargebackDispute = "PAYMENT_CHARGEBACK_DISPUTE";
+    public const string PaymentDeleted = "PAYMENT_DELETED";
+
+    // Subscription events
+    public const string SubscriptionCreated = "SUBSCRIPTION_CREATED";
+    public const string SubscriptionUpdated = "SUBSCRIPTION_UPDATED";
+    public const string SubscriptionDeleted = "SUBSCRIPTION_DELETED";
+}
+
+// ==============================================================================
+// WEBHOOK PAYLOAD
+// ==============================================================================
+
+public record AsaasWebhookPayload
+{
+    [JsonPropertyName("event")]
+    public string Event { get; init; } = string.Empty;
+
+    [JsonPropertyName("payment")]
+    public AsaasWebhookPayment? Payment { get; init; }
+}
+
+public record AsaasWebhookPayment
+{
+    [JsonPropertyName("id")]
+    public string Id { get; init; } = string.Empty;
+
+    [JsonPropertyName("customer")]
+    public string Customer { get; init; } = string.Empty;
+
+    [JsonPropertyName("value")]
+    public decimal Value { get; init; }
+
+    [JsonPropertyName("status")]
+    public string Status { get; init; } = string.Empty;
+
+    [JsonPropertyName("billingType")]
+    public string BillingType { get; init; } = string.Empty;
+
+    [JsonPropertyName("externalReference")]
+    public string? ExternalReference { get; init; }
+
+    [JsonPropertyName("subscription")]
+    public string? Subscription { get; init; }
+}
+
+// ==============================================================================
+// PAYMENT STATUS ENUM
+// ==============================================================================
+
+public enum PaymentStatus
+{
+    Pending,
+    AwaitingRisk,
+    Confirmed,
+    Received,
+    Overdue,
+    Refunded,
+    Chargeback,
+    Deleted
+}
+
+// ==============================================================================
+// SERVICE INTERFACES (to be implemented)
+// ==============================================================================
+
+public interface IPaymentService
+{
+    Task SyncPaymentAsync(string asaasPaymentId, CancellationToken ct = default);
+    Task UpdateStatusAsync(string asaasPaymentId, PaymentStatus status, CancellationToken ct = default);
+    Task ConfirmPaymentAsync(string asaasPaymentId, CancellationToken ct = default);
+    Task MarkOverdueAsync(string asaasPaymentId, CancellationToken ct = default);
+    Task RefundPaymentAsync(string asaasPaymentId, CancellationToken ct = default);
+    Task HandleChargebackAsync(string asaasPaymentId, CancellationToken ct = default);
+    Task DeletePaymentAsync(string asaasPaymentId, CancellationToken ct = default);
+}
+
+public interface ISubscriptionService
+{
+    // Implement as needed
+}
+
+// ==============================================================================
+// DEPENDENCY INJECTION
+// ==============================================================================
+
+public static class AsaasWebhookServiceExtensions
+{
+    public static IServiceCollection AddAsaasWebhook(this IServiceCollection services)
+    {
+        services.AddScoped<IAsaasWebhookHandler, AsaasWebhookHandler>();
+        return services;
+    }
+}

package/content/.morph/templates/integrations/azure-identity-config.cs

@@ -0,0 +1,288 @@
+// ==============================================================================
+// MORPH-SPEC - Azure Identity (Microsoft Identity) Configuration Template
+// Configuração de autenticação com Microsoft Identity Platform
+// ==============================================================================
+
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.OpenIdConnect;
+using Microsoft.AspNetCore.Components.Authorization;
+using Microsoft.Identity.Web;
+using Microsoft.Identity.Web.UI;
+using System.Security.Claims;
+
+namespace {{Namespace}}.Infrastructure.Auth;
+
+// ==============================================================================
+// SERVICE EXTENSIONS
+// ==============================================================================
+
+public static class AzureIdentityServiceExtensions
+{
+    /// <summary>
+    /// Adiciona autenticação Microsoft Identity para Web Apps
+    /// Requer: Microsoft.Identity.Web, Microsoft.Identity.Web.UI
+    /// </summary>
+    public static IServiceCollection AddAzureIdentityAuthentication(
+        this IServiceCollection services,
+        IConfiguration configuration)
+    {
+        services.AddAuthentication(OpenIdConnectDefaults.AuthenticationScheme)
+            .AddMicrosoftIdentityWebApp(configuration.GetSection("AzureAd"));
+
+        services.AddControllersWithViews()
+            .AddMicrosoftIdentityUI();
+
+        services.AddAuthorization(options =>
+        {
+            // Default policy - requires authenticated user
+            options.FallbackPolicy = options.DefaultPolicy;
+
+            // Custom policies
+            options.AddPolicy("RequireAdmin", policy =>
+                policy.RequireRole("Admin"));
+
+            options.AddPolicy("RequireManager", policy =>
+                policy.RequireAssertion(context =>
+                    context.User.IsInRole("Admin") ||
+                    context.User.IsInRole("Manager")));
+        });
+
+        return services;
+    }
+
+    /// <summary>
+    /// Adiciona autenticação Microsoft Identity para Blazor Server
+    /// </summary>
+    public static IServiceCollection AddAzureIdentityBlazor(
+        this IServiceCollection services,
+        IConfiguration configuration)
+    {
+        services.AddAuthentication(OpenIdConnectDefaults.AuthenticationScheme)
+            .AddMicrosoftIdentityWebApp(configuration.GetSection("AzureAd"));
+
+        services.AddControllersWithViews()
+            .AddMicrosoftIdentityUI();
+
+        services.AddRazorPages();
+        services.AddServerSideBlazor()
+            .AddMicrosoftIdentityConsentHandler();
+
+        services.AddAuthorization();
+
+        return services;
+    }
+
+    /// <summary>
+    /// Adiciona autenticação Microsoft Identity para APIs (JWT Bearer)
+    /// </summary>
+    public static IServiceCollection AddAzureIdentityApi(
+        this IServiceCollection services,
+        IConfiguration configuration)
+    {
+        services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
+            .AddMicrosoftIdentityWebApi(configuration.GetSection("AzureAd"));
+
+        services.AddAuthorization();
+
+        return services;
+    }
+
+    /// <summary>
+    /// Adiciona suporte para chamar APIs downstream (Graph, custom APIs)
+    /// </summary>
+    public static IServiceCollection AddAzureIdentityWithDownstreamApi(
+        this IServiceCollection services,
+        IConfiguration configuration)
+    {
+        services.AddAuthentication(OpenIdConnectDefaults.AuthenticationScheme)
+            .AddMicrosoftIdentityWebApp(configuration.GetSection("AzureAd"))
+            .EnableTokenAcquisitionToCallDownstreamApi()
+            .AddMicrosoftGraph(configuration.GetSection("Graph"))
+            .AddInMemoryTokenCaches();
+
+        return services;
+    }
+}
+
+// ==============================================================================
+// USER SERVICE
+// ==============================================================================
+
+public interface IAzureIdentityUserService
+{
+    string? GetUserId();
+    string? GetUserEmail();
+    string? GetUserName();
+    IEnumerable<string> GetUserRoles();
+    bool IsAuthenticated();
+    bool IsInRole(string role);
+}
+
+public class AzureIdentityUserService : IAzureIdentityUserService
+{
+    private readonly IHttpContextAccessor _httpContextAccessor;
+
+    public AzureIdentityUserService(IHttpContextAccessor httpContextAccessor)
+    {
+        _httpContextAccessor = httpContextAccessor;
+    }
+
+    private ClaimsPrincipal? User => _httpContextAccessor.HttpContext?.User;
+
+    public string? GetUserId() =>
+        User?.FindFirstValue(ClaimTypes.NameIdentifier) ??
+        User?.FindFirstValue("oid"); // Azure AD Object ID
+
+    public string? GetUserEmail() =>
+        User?.FindFirstValue(ClaimTypes.Email) ??
+        User?.FindFirstValue("preferred_username");
+
+    public string? GetUserName() =>
+        User?.FindFirstValue(ClaimTypes.Name) ??
+        User?.FindFirstValue("name");
+
+    public IEnumerable<string> GetUserRoles() =>
+        User?.FindAll(ClaimTypes.Role).Select(c => c.Value) ??
+        Enumerable.Empty<string>();
+
+    public bool IsAuthenticated() =>
+        User?.Identity?.IsAuthenticated ?? false;
+
+    public bool IsInRole(string role) =>
+        User?.IsInRole(role) ?? false;
+}
+
+// ==============================================================================
+// MIDDLEWARE PIPELINE
+// ==============================================================================
+
+public static class AzureIdentityMiddlewareExtensions
+{
+    public static IApplicationBuilder UseAzureIdentityAuthentication(this IApplicationBuilder app)
+    {
+        app.UseAuthentication();
+        app.UseAuthorization();
+        return app;
+    }
+}
+
+// ==============================================================================
+// BLAZOR COMPONENTS HELPER
+// ==============================================================================
+
+/*
+<!-- App.razor -->
+<CascadingAuthenticationState>
+    <Router AppAssembly="@typeof(App).Assembly">
+        <Found Context="routeData">
+            <AuthorizeRouteView RouteData="@routeData" DefaultLayout="@typeof(MainLayout)">
+                <NotAuthorized>
+                    @if (!context.User.Identity?.IsAuthenticated ?? true)
+                    {
+                        <RedirectToLogin />
+                    }
+                    else
+                    {
+                        <p>Você não tem permissão para acessar este recurso.</p>
+                    }
+                </NotAuthorized>
+            </AuthorizeRouteView>
+        </Found>
+    </Router>
+</CascadingAuthenticationState>
+*/
+
+// ==============================================================================
+// REDIRECT TO LOGIN COMPONENT
+// ==============================================================================
+
+/*
+<!-- Components/RedirectToLogin.razor -->
+@inject NavigationManager Navigation
+
+@code {
+    protected override void OnInitialized()
+    {
+        var returnUrl = Uri.EscapeDataString(Navigation.Uri);
+        Navigation.NavigateTo($"MicrosoftIdentity/Account/SignIn?redirectUri={returnUrl}", forceLoad: true);
+    }
+}
+*/
+
+// ==============================================================================
+// APPSETTINGS EXAMPLE
+// ==============================================================================
+
+/*
+{
+  "AzureAd": {
+    "Instance": "https://login.microsoftonline.com/",
+    "Domain": "yourdomain.onmicrosoft.com",
+    "TenantId": "your-tenant-id",
+    "ClientId": "your-client-id",
+    "ClientSecret": "your-client-secret",
+    "CallbackPath": "/signin-oidc"
+  },
+  "Graph": {
+    "BaseUrl": "https://graph.microsoft.com/v1.0",
+    "Scopes": "User.Read"
+  }
+}
+*/
+
+// ==============================================================================
+// PROGRAM.CS EXAMPLES
+// ==============================================================================
+
+/*
+// Web App (MVC/Razor Pages)
+var builder = WebApplication.CreateBuilder(args);
+builder.Services.AddAzureIdentityAuthentication(builder.Configuration);
+
+var app = builder.Build();
+app.UseAzureIdentityAuthentication();
+app.MapControllers();
+app.Run();
+
+// Blazor Server
+var builder = WebApplication.CreateBuilder(args);
+builder.Services.AddAzureIdentityBlazor(builder.Configuration);
+
+var app = builder.Build();
+app.UseAzureIdentityAuthentication();
+app.MapBlazorHub();
+app.MapFallbackToPage("/_Host");
+app.Run();
+
+// API (JWT Bearer)
+var builder = WebApplication.CreateBuilder(args);
+builder.Services.AddAzureIdentityApi(builder.Configuration);
+
+var app = builder.Build();
+app.UseAzureIdentityAuthentication();
+app.MapControllers().RequireAuthorization();
+app.Run();
+*/
+
+// ==============================================================================
+// AZURE AD B2C CONFIGURATION
+// ==============================================================================
+
+/*
+// For Azure AD B2C, use this configuration:
+{
+  "AzureAdB2C": {
+    "Instance": "https://yourtenant.b2clogin.com",
+    "Domain": "yourtenant.onmicrosoft.com",
+    "TenantId": "your-tenant-id",
+    "ClientId": "your-client-id",
+    "SignUpSignInPolicyId": "B2C_1_signupsignin",
+    "ResetPasswordPolicyId": "B2C_1_passwordreset",
+    "EditProfilePolicyId": "B2C_1_editprofile"
+  }
+}
+
+// And use:
+services.AddAuthentication(OpenIdConnectDefaults.AuthenticationScheme)
+    .AddMicrosoftIdentityWebApp(configuration.GetSection("AzureAdB2C"));
+*/