Update README.md

brazilianscriptguy · web-flow · commit e8e05fc5a9c4 · 2026-02-06T21:42:12.000-03:00
Signed-off-by: LUIZ HAMILTON ROBERTO DA SILVA &lt;luizhamilton.lhr@gmail.com&gt;
diff --git a/SysAdmin-Tools/ActiveDirectory-SSO-Integrations/DotNet-API/README.md b/SysAdmin-Tools/ActiveDirectory-SSO-Integrations/DotNet-API/README.md
@@ -1,51 +1,53 @@
-# 🔹 DotNet-API: Active Directory SSO Integration
+# 🔹 DotNet-API — Active Directory SSO Integration
 
-## 📌 Overview
+![SSO](https://img.shields.io/badge/SSO-LDAP%20%7C%20Active%20Directory-blue?style=for-the-badge&logo=microsoft) ![DotNet](https://img.shields.io/badge/.NET-ASP.NET%20Core-512BD4?style=for-the-badge&logo=dotnet&logoColor=white) ![API](https://img.shields.io/badge/Type-REST%20API-0A66C2?style=for-the-badge) ![Security](https://img.shields.io/badge/Security-Enterprise%20SSO-critical?style=for-the-badge)
 
-The **DotNet-API** is an **ASP.NET Core-based REST API** that enables **LDAP-based Single Sign-On (SSO) authentication** with **Active Directory**.
+## 📝 Overview
 
----
+The **DotNet-API** module is an **ASP.NET Core–based REST API** that implements **LDAP-based Single Sign-On (SSO)** authentication against **Microsoft Active Directory**.
+
+This integration follows the same **security, configuration, and architectural standards** defined in the **ActiveDirectory-SSO-Integrations** suite, enabling **consistent, auditable, and reusable SSO patterns** across enterprise environments.
+
+Key objectives:
+
+- Centralized authentication via Active Directory  
+- Secure LDAP bind using **service accounts (InetOrgPerson)**  
+- Clean separation between authentication logic, middleware, and API endpoints  
+- Ready for enterprise deployment and extension  
 
 ## 📁 Folder Structure
 
 ```
 ActiveDirectory-SSO-Integrations/
-│
-├── 📂 DotNet-API/                     # Parent folder for .NET API integration
-│   ├── 📄 DotNetSSO.sln               # Solution file for the .NET project
-│   ├── 📖 README.md                   # Documentation for DotNet-API integration
-│   ├── 📂 DotNetSSO.API/              # Main API implementation
-│   │   ├── 📄 Program.cs              # Entry point for the API
-│   │   ├── 🛇 Startup.cs              # Application startup configuration
-│   │   ├── 📜 appsettings.json        # General application settings
-│   │   ├── 📜 appsettings.Development.json  # Environment-specific settings
-│   │   ├── 📜 ldapsettings.json       # LDAP authentication settings
-│   │   ├── 📂 Controllers/            # API controllers
-│   │   │   ├── 📜 AuthController.cs   # Handles authentication requests
-│   │   │   ├── 📜 UserController.cs   # Manages user-related requests
-│   │   ├── 📂 Services/               # Business logic for LDAP authentication
-│   │   │   ├── 📜 LdapService.cs      # Handles LDAP authentication logic
-│   │   ├── 📂 Middleware/             # Custom authentication enforcement
-│   │   │   ├── 📜 AuthenticationMiddleware.cs  # Middleware for enforcing authentication
-│   │   ├── 📂 Models/                 # Defines data models
-│   │   │   ├── 📜 UserModel.cs        # Represents user object schema
+└── DotNet-API/
+    ├── DotNetSSO.sln
+    ├── README.md
+    └── DotNetSSO.API/
+        ├── Program.cs
+        ├── Startup.cs
+        ├── appsettings.json
+        ├── appsettings.Development.json
+        ├── ldapsettings.json
+        ├── Controllers/
+        │   ├── AuthController.cs
+        │   └── UserController.cs
+        ├── Services/
+        │   └── LdapService.cs
+        ├── Middleware/
+        │   └── AuthenticationMiddleware.cs
+        └── Models/
+            └── UserModel.cs
 ```
 
----
-
 ## 🛠️ Prerequisites
 
-- **.NET 6.0 or later**  
-- **Active Directory instance**  
-- **LDAP access credentials**  
-- **Visual Studio / VS Code**  
-- **Postman** (for testing API requests)
-
----
-
-## ⚙️ Configuration
+- .NET 6.0 or later  
+- Active Directory domain with LDAP enabled  
+- Dedicated LDAP bind account (InetOrgPerson, least privilege)  
+- Visual Studio or VS Code  
+- Postman or curl for API testing  
 
-Modify `appsettings.json` with your **LDAP credentials**:
+## ⚙️ LDAP Configuration
 
 ```json
 {
@@ -59,86 +61,30 @@ Modify `appsettings.json` with your **LDAP credentials**:
 }
 ```
 
----
+## 🚀 Running the API
 
-## 🚀 How to Run
-
-1. **Clone the repository**:
-   ```bash
-   git clone https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite.git
-   cd Windows-SysAdmin-ProSuite/SysAdmin-Tools/ActiveDirectory-SSO-Integrations/DotNet-API
-   ```
-
-2. **Set the LDAP password as an environment variable**:
-   ```bash
-   export LDAP_PASSWORD='your-secure-password'
-   ```
-
-3. **Run the application**:
-   ```bash
-   dotnet run
-   ```
+```bash
+git clone https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite.git
+cd Windows-SysAdmin-ProSuite/SysAdmin-Tools/ActiveDirectory-SSO-Integrations/DotNet-API
+```
 
----
+```powershell
+$env:LDAP_PASSWORD="your-secure-password"
+dotnet run
+```
 
 ## 🔄 API Endpoints
 
-### 1️⃣ Authenticate User
-
-- **Endpoint**: `POST /api/auth/login`
-- **Request Body**:
-  ```json
-  {
-    "username": "john.doe",
-    "password": "SuperSecretPassword"
-  }
-  ```
-- **Response**:
-  ```json
-  {
-    "message": "Authentication successful"
-  }
-  ```
-
----
-
-### 2️⃣ Get User Details
-
-- **Endpoint**: `GET /api/user/{username}`
-- **Example**:
-  ```bash
-  curl -X GET http://localhost:5000/api/user/john.doe
-  ```
-- **Response**:
-  ```json
-  {
-    "username": "john.doe",
-    "displayName": "John Doe",
-    "email": "john.doe@example.com",
-    "department": "IT",
-    "role": "User"
-  }
-  ```
-
----
-
-## 📜 License
-
-[![MIT License](https://img.shields.io/badge/License-MIT-blue.svg?style=for-the-badge)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/blob/main/.github/LICENSE)
-
----
-
-## 🤝 Contributing
-
-[![Contributions Welcome](https://img.shields.io/badge/Contributions-Welcome-brightgreen?style=for-the-badge)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/blob/main/.github/CONTRIBUTING.md)
-
----
+### Authenticate User
+`POST /api/auth/login`
 
-## 📩 Support
+### Retrieve User Details
+`GET /api/user/{username}`
 
-[![Email Badge](https://img.shields.io/badge/Email-luizhamilton.lhr@gmail.com-D14836?style=for-the-badge&logo=gmail)](mailto:luizhamilton.lhr@gmail.com)
-[![GitHub Issues](https://img.shields.io/badge/GitHub%20Issues-Report%20Here-blue?style=for-the-badge&logo=github)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/blob/main/.github/BUG_REPORT.md)
+## 🔐 Security Notes
 
----
+- LDAP bind with least privilege  
+- No interactive logon  
+- Middleware-enforced authentication  
 
-<p align="center">🚀 <strong>Enjoy Seamless SSO Integration!</strong> 🎯</p>
+© 2026 Luiz Hamilton Silva. All rights reserved.
