sp-dev-fx-webparts/samples/react-kiota-custom-api-client/TeamifiedApi/Program.cs

using MediatR;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.OpenApi.Models;
using Teamified.Api.Diagnostics;
using Teamified.Api.Teams;

var builder = WebApplication.CreateBuilder(args);

// Add services to the container.
// Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
builder.Services.AddEndpointsApiExplorer();
builder.Services.AddSwaggerGen(
    c =>
    {
        c.AddServer(new OpenApiServer() // Required by Kiota when creating the SDK
        {
            Url = "https://localhost:7295"
        });
        c.AddServer(new OpenApiServer()
        {
            Url = "https://teamifiedapi.azurewebsites.net"
        });
    });

builder.Services.AddMediatR(m => m.AsScoped(), typeof(Program));

builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
          .AddMicrosoftIdentityWebApi(builder.Configuration)
            .EnableTokenAcquisitionToCallDownstreamApi(options => { builder.Configuration.Bind("AzureAd", options); })
               .AddMicrosoftGraph(builder.Configuration.GetSection("MicrosoftGraph"))
               .AddInMemoryTokenCaches(); // Advice: Use Distributed TokenCache (redis, sql...)

builder.Services.AddAuthorization(cfg => {
    cfg.FallbackPolicy = new AuthorizationPolicyBuilder()
        .RequireAuthenticatedUser()
        .Build();
});

builder.Services.AddHttpContextAccessor();

const string MyAllowSpecificOrigins = "_teamifiedOpenCors";
builder.Services.AddCors(options =>
{
    options.AddPolicy(name: MyAllowSpecificOrigins,
                      policy =>
                      {
                          policy
                            .AllowAnyOrigin()
                            .AllowAnyHeader();
                      });
});

builder.Services.RegisterTeamsModule();

var app = builder.Build();

// Configure the HTTP request pipeline.
if (app.Environment.IsDevelopment())
{
    app.UseSwagger();
    app.UseSwaggerUI();
}

app.UseHttpsRedirection();

app.UseCors(MyAllowSpecificOrigins);

app.UseAuthentication();
app.UseAuthorization();

app.MapDiagnosticsEndpoints();
app.MapTeamsEndpoints();

app.Run();