SmallApiToolkit is a tool designed to help developers build small or example APIs more quickly. It provides a range of features that streamline the creation of clean, maintainable, and well-structured API endpoints.
Many of my example or educational projects use similar abstractions, extensions, or middlewares for tasks like exception handling and logging. The main purpose of this library is to reduce boilerplate code in my projects. However, the abstraction idea behind IHttpRequestHandler and the SendAsync extension method is production-ready, as I am already using it. Feel free to adopt these ideas in your projects!
To ensure Minimal API endpoints are clear and readable, SmallApiToolkit offers the IHttpRequestHandler interface. By implementing this interface in your handler, you can utilize the SendAsync extension method directly within the Minimal API endpoint. This method simplifies the process by automatically generating a JSON response based on the IHttpRequestHandler implementation. Additionally, every response is wrapped in a DataResponse, ensuring a consistent structure containing Data and Errors.
public class DataResponse<T>
{
public T? Data { get; init; }
public IEnumerable<string> Errors { get; init; } = Array.Empty<string>();
}
Example IHttpRequestHandler usage:
- Implement the IHttpRequestHandler interface
internal sealed class AddFavoriteHandler : IHttpRequestHandler<int, AddFavoriteCommand>
{
private readonly IValidator<AddFavoriteCommand> _addFavoriteCommandValidator;
public AddFavoriteHandler()
{
_addFavoriteCommandValidator = Guard.Against.Null(addFavoriteCommandValidator);
}
public async Task<HttpDataResponse<int>> HandleAsync(AddFavoriteCommand request, CancellationToken cancellationToken)
{
if (!_addFavoriteCommandValidator.IsValid(request))
{
return HttpDataResponses.AsBadRequest<int>(string.Format(ErrorMessages.RequestValidationError, request));
}
return HttpDataResponses.AsOK(addResult.Value);
}- Register Handler in DI container:
serviceCollection.AddScoped<IHttpRequestHandler<int, AddFavoriteCommand>, AddFavoriteHandler>()- Register Minimal Api endpoint:
MapPost("favorite", async ([FromBody] AddFavoriteCommand addFavoriteCommand, [FromServices] IHttpRequestHandler<int, AddFavoriteCommand> handler, CancellationToken cancellationToken) =>
await handler.SendAsync(addFavoriteCommand, cancellationToken))
.ProducesDataResponse<int>()
.WithName("AddFavorite")
.WithTags("Setters");To ensure that every client-side request is validated, the ValidationHttpRequestHandler<TResponse, TRequest> class is provided. This class eliminates the need to duplicate validation logic across handlers by leveraging the IRequestValidator interface.
- Inherit from ValidationHttpRequestHandler, pass IRequestValidator to the base constructor, and then override the HandleValidRequestAsync method. If you need to create a custom invalid response message, you can also override the CreateInvalidResponse method.
//Handler
internal class WeatherForecastValidationRequestHandler : ValidationHttpRequestHandler<WeatherForecastDto[], WeatherForecastRequestDto>
{
public WeatherForecastValidationRequestHandler(IRequestValidator<WeatherForecastRequestDto> validator)
: base(validator)
{
}
protected override Task<HttpDataResponse<WeatherForecastDto[]>> HandleValidRequestAsync(WeatherForecastRequestDto request, CancellationToken cancellationToken)
{
var summaries = new[]
{
"Freezing", "Bracing", "Chilly", "Cool", "Mild", "Warm", "Balmy", "Hot", "Sweltering", "Scorching"
};
var forecast = Enumerable.Range(1, 5).Select(index =>
new WeatherForecastDto
(
DateOnly.FromDateTime(DateTime.Now.AddDays(index)),
Random.Shared.Next(-20, 55),
summaries[Random.Shared.Next(summaries.Length)]
))
.ToArray();
return Task.FromResult(HttpDataResponses.AsOK(forecast));
}
}- Create Validator
public class WeatherForecastValidationRequestValidator : IRequestValidator<WeatherForecastRequestDto>
{
public RequestValidationResult Validate(WeatherForecastRequestDto request)
{
if (request.TemperatureC > 999)
{
return new RequestValidationResult { IsValid = false };
}
return new RequestValidationResult { IsValid = true };
}
}- Register Handler and Validator in DI container:
.AddScoped<IHttpRequestHandler<WeatherForecastDto[], WeatherForecastRequestDto>, WeatherForecastValidationRequestHandler>()
.AddScoped<IRequestValidator<WeatherForecastRequestDto>, WeatherForecastValidationRequestValidator>();- Register Minimal Api endpoint:
.MapGet("/weatherforecastValidate",
async ([FromQuery(Name = "temp")]int temperatureC, [FromQuery(Name = "sum")]string summary, IHttpRequestHandler<WeatherForecastDto[], WeatherForecastRequestDto> httpRequestHandler, CancellationToken cancellationToken) =>
await httpRequestHandler.SendAsync(new WeatherForecastRequestDto(temperatureC, summary), cancellationToken))
.ProducesDataResponse<WeatherForecastDto[]>();Middlewares are essential for handling cross-cutting concerns such as authentication, logging, and error handling. SmallApiToolkit provides built-in middlewares for logging and exception handling, simplifying their integration into your API.
To log requests and responses, use the LoggingMiddleware. Register it as follows:
var builder = WebApplication.CreateBuilder(args);
builder.AddLogging(LogLevel.Debug); // register console logging
...
var app = builder.Build();
...
app.UseMiddleware<LoggingMiddleware>(); // register middleware
...
app.Run();
By default, requests and responses are logged at the Information log level. For more control over logging, you can inherit from LoggingMiddleware and override its methods.
You can find more information about logging in the Microsoft documentation
If you don't need the ability to edit your request and response logs, you can use the built-in Microsoft middleware:
var builder = WebApplication.CreateBuilder(args);
//...
builder.Services.AddHttpLogging(options =>
{
options.LoggingFields = HttpLoggingFields.RequestHeaders |
HttpLoggingFields.RequestBody |
HttpLoggingFields.ResponseHeaders |
HttpLoggingFields.ResponseBody;
});
...
var app = builder.Build();
...
app.UseHttpLogging();
...
app.Run();
For more information, see HTTP logging in ASP.NET Core
To catch and handle unexpected errors, use the ExceptionMiddleware. Register it like this:
var builder = WebApplication.CreateBuilder(args);
...
var app = builder.Build();
...
app.UseMiddleware<ExceptionMiddleware>(); // register middleware
...
app.Run();
Override the ExtractFromException and CreateResponseJson methods to customize the error response sent to clients.
SmallApiToolkit includes a MapVersionGroup extension method for versioning endpoint routes, ensuring your API can evolve without breaking existing clients.
...
var app = builder.Build();
...
app.MapGroup("someGroup")
.MapVersionGroup(1)
.MapGet("myGet", () => "This is a GET");
app.Run();
This creates the endpoint route: someGroup/v1/myGet. For more complex versioning needs, consider using: https://github.com/dotnet/aspnet-api-versioning
You can easily add basic CORS configuration using SmallApiToolkit. Simply add the CORS property to your appsettings.json file like this:
"CORS": {
"name": "allowLocalhostOrigins",
"urls": [
"http://127.0.0.1:4200",
"http://localhost:4200",
"https://127.0.0.1:4200",
"https://localhost:4200"
]
}Then, register the CORS configuration in the Program.cs file:
var corsPolicyName = builder.Services.AddCorsByConfiguration(builder.Configuration);
...
app.UseCors(corsPolicyName); This code registers the following CORS policy:
options.AddPolicy(name: name, policy =>
{
policy.WithOrigins(urls)
.AllowAnyHeader()
.AllowAnyMethod();
});If you do not specify any URLs, this configuration will allow any origin.
For a practical example of SmallApiToolkit in action, check out the repositories: