✨ Tenant Context Middleware

[zacharykeeping]

Hi Developers,

Pain

The API needs to determine which tenant is making each request and set the appropriate context for database queries and business logic.

Suggested Solution

Create ASP.NET Core middleware that extracts tenant from the request (header, subdomain, or auth claim) and sets the tenant context for the request pipeline.

Implementation:

• Create middleware to extract tenant
• Support multiple resolution strategies
• Add tenant to logging scope
• Handle invalid tenant gracefully

Tasks

• Create ASP.NET Core middleware
• Support multiple tenant resolution strategies (header, subdomain, auth claim)
• Add tenant to logging scope
• Handle missing/invalid tenant gracefully
• Test all resolution strategies
• Integrate with authentication
• Return appropriate HTTP status for invalid tenant
• Document tenant resolution strategy

Acceptance Criteria

• Meets Definition of Done - https://github.com/SSWConsulting/SSW.Rewards.Mobile/blob/main/_docs/Definition-of-Done.md
• Middleware extracts tenant from request (header, subdomain, or auth claim)
• Tenant context available throughout request pipeline
• Invalid tenant returns 404 or 403
• Tenant context logged for auditing
• Works with authentication

More Information

Files to Create/Modify:

• NEW: src/WebAPI/Middleware/TenantResolutionMiddleware.cs
• MODIFY: src/WebAPI/Program.cs
• Update authentication configuration

Dependencies: Previous PBI must be completed first

Epic: #1483

Thanks!