Mitc.ProjectTemplates

A dotnet new template package containing project templates for internal use.

Installing

dotnet new install Mitc.ProjectTemplates

Uninstalling

dotnet new uninstall Mitc.ProjectTemplates

Documentation

API reference and conceptual docs are generated with DocFX.

View locally:

serve-docs.cmd

Or manually: dotnet docfx docs/docfx.json --serve — opens at http://localhost:8080

CI: Documentation is automatically published to GitHub Pages on push to master when docs or Core/Contracts source files change.

ASP.NET Core Unified (aspnet-unified)

A multi-project ASP.NET Core solution with a shared Core library. Supports Razor Pages or Vue SPA frontends, configurable authentication strategies, and optional user sync infrastructure.

Usage:

# Vue SPA (default)
dotnet new aspnet-unified -n MyApp

# Razor Pages
dotnet new aspnet-unified -n MyApp --ui-framework razor

Parameters:

Individual feature toggles are also available for fine-grained control over SSO providers, 2FA, soft deletes, audit logging, and more. Run dotnet new aspnet-unified --help for the full list.

Projects created:

Post-creation: The template automatically restores NuGet packages and (for Vue) runs npm install in the client project.

Features

• Authentication — Cookie-based (Razor) or JWT-based (API/Vue) authentication with ASP.NET Core Identity. Supports local password sign-in and 6 external SSO providers (Google, Microsoft, Facebook, Yahoo, ORCID, Shibboleth), each independently toggled via feature flags.
• Identity strategies — Preconfigured authentication profiles for common scenarios: local-only, enterprise SSO, hybrid, and federated migration. Each strategy sets sensible defaults for registration, password sign-in, SSO, and auto-provisioning.
• Authorization — Granular permission system using strongly-typed Permission and PermissionGroup enumerations. Permissions are assigned to roles and enforced via [RequirePermission] attributes and HasPermission() checks.
• SSO provider management — Admin UI for managing SSO provider credentials, enabled state, and display order. Providers are defined by polymorphic descriptors with type-safe config via SsoConfigKey enum. Supports appsettings defaults with database overrides.
• Claims mapping — Map external identity claims (AD groups, SAML attributes) to internal roles. Admin-configurable rules with per-provider scope.
• User management — CRUD operations with search, pagination, and role assignment. Supports bulk provisioning via CSV upload.
• Role management — CRUD operations with permission assignment and user membership. Role names are enforced as unique.
• Session tracking — Login session tracking (device, browser, OS, IP, location) with ability to view and revoke individual sessions.
• Audit logging — Full audit trail of entity changes with property-level diffs.
• File management — Upload, download, edit, and delete files with blob storage. Ownership-based access control with admin-level file permissions.
• Profile — Self-service profile editing, password changes, and profile picture uploads.
• Two-factor authentication — TOTP-based 2FA with recovery codes.
• Feature flags — Toggle capabilities at runtime via Microsoft.FeatureManagement.
• Soft deletes — Optional soft delete support via EF Core interceptor. Deleted entities are marked inactive and can be reactivated.
• Rate limiting — Authentication endpoints are rate-limited.
• Structured logging — Serilog with console and Application Insights sinks.
• Health checks — Database connectivity health check at /health.
• API documentation — OpenAPI + Scalar UI (Vue/API mode).