Added Azure sql setup for User access micro service

2023-09-29 12:30:20 -04:00 · 2023-09-29 12:30:20 -04:00 · 26096f108a
commit 26096f108a
parent 4eb8f84d5b 15acd00959
110 changed files with 2525 additions and 639 deletions
--- a/DamageAssesmentApi/DamageAssesment.Api.Answers/Controllers/AnswersController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Answers/Controllers/AnswersController.cs
@ -1,7 +1,6 @@
 using DamageAssesment.Api.Answers.Interfaces;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.OpenApi.Any;
 namespace DamageAssesment.Api.Answers.Controllers
 {
@ -16,7 +15,7 @@ namespace DamageAssesment.Api.Answers.Controllers
        /// <summary>
        /// Get all answers
        /// </summary>
-        
+        [Authorize(Roles = "admin")]
        [HttpGet("Answers")]
        public async Task<ActionResult> GetAnswersAsync() {
@ -32,7 +31,7 @@ namespace DamageAssesment.Api.Answers.Controllers
        /// Get an answer based on answerId.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("Answers/{Id}")]
        public async Task<ActionResult> GetAnswerByIdAsync(int Id)
        {
@ -48,6 +47,7 @@ namespace DamageAssesment.Api.Answers.Controllers
        /// <summary>
        /// Get all answers based on responseId.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpGet("Answers/ByResponse/{responseid}")]
        public async Task<IActionResult> GetAnswersByResponseId(int responseid)
        {
@ -61,7 +61,7 @@ namespace DamageAssesment.Api.Answers.Controllers
        /// <summary>
        /// Get all answers based on questionId.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("Answers/ByQuestion/{questionid}")]
        public async Task<IActionResult> AnswersByQuestionId(int questionid)
        {
@ -75,7 +75,7 @@ namespace DamageAssesment.Api.Answers.Controllers
        /// <summary>
        /// Update an existing answer.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPut("Answers")]
        public async Task<IActionResult> UpdateAnswer(Models.Answer answer)
        {
@ -96,7 +96,7 @@ namespace DamageAssesment.Api.Answers.Controllers
        /// <summary>
        /// Save a new answer.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPost("Answers")]
        public async Task<IActionResult> CreateAnswer(Models.Answer answer)
        {
@ -114,7 +114,7 @@ namespace DamageAssesment.Api.Answers.Controllers
        /// <summary>
        ///  Delete an existing answer.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpDelete("Answers/{id}")]
        public async Task<IActionResult> DeleteAnswer(int id)
        {
--- a/DamageAssesmentApi/DamageAssesment.Api.Answers/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Answers/Program.cs
@ -1,23 +1,73 @@
 using DamageAssesment.Api.Answers.Db;
 using DamageAssesment.Api.Answers.Interfaces;
 using DamageAssesment.Api.Answers.Providers;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models;
 using System.Reflection;
 using System.Text;
 var builder = WebApplication.CreateBuilder(args);
-
+var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication(item =>
 {
    item.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    item.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
 }).AddJwtBearer(item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 });
 // Add services to the container.
 builder.Services.AddControllers();
 // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
 builder.Services.AddEndpointsApiExplorer();
 //builder.Services.AddSwaggerGen();
-builder.Services.AddSwaggerGen(c =>
+builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddScoped<IAnswersProvider, AnswersProvider>();
 builder.Services.AddAutoMapper(AppDomain.CurrentDomain.GetAssemblies()); //4/30
@ -35,7 +85,7 @@ if (app.Environment.IsDevelopment())
    app.UseSwagger();
    app.UseSwaggerUI();
 }
-
+app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
--- a/DamageAssesmentApi/DamageAssesment.Api.Attachments/Controllers/AttachmentsController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Attachments/Controllers/AttachmentsController.cs
@ -1,6 +1,7 @@
 using Azure;
 using DamageAssesment.Api.Attachments.Interfaces;
 using DamageAssesment.Api.Attachments.Models;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using System.Net.Http.Headers;
@ -21,7 +22,7 @@ namespace DamageAssesment.Api.Attachments.Controllers
        /// <summary>
        /// Get all attachments.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("Attachments")]
        public async Task<ActionResult> GetAttachmentsAsync()
        {
@ -37,6 +38,7 @@ namespace DamageAssesment.Api.Attachments.Controllers
        /// <summary>
        /// Get all attachments by attachmentId.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpGet("Attachments/{id}")]
        public async Task<ActionResult> GetAttachmentbyIdAsync(int id)
        {
@ -80,7 +82,7 @@ namespace DamageAssesment.Api.Attachments.Controllers
        /// <summary>
        /// Save new Attachment(s)
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPost("Attachments"), DisableRequestSizeLimit]
        public async Task<IActionResult> UploadAttachmentAsync(AttachmentInfo attachmentInfo)
        {
@ -107,7 +109,7 @@ namespace DamageAssesment.Api.Attachments.Controllers
        /// <summary>
        /// Modify an new attachment.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPut("Attachments"), DisableRequestSizeLimit]
        public async Task<IActionResult> UpdateAttachmentAsync(AttachmentInfo attachmentInfo)
        {
@ -138,6 +140,7 @@ namespace DamageAssesment.Api.Attachments.Controllers
        /// <summary>
        /// Delete an existing attachment.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpDelete("Attachments/{id}")]
        public async Task<IActionResult> DeleteAttachment(int id)
        {
--- a/DamageAssesmentApi/DamageAssesment.Api.Attachments/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Attachments/Program.cs
@ -1,25 +1,75 @@
 using DamageAssesment.Api.Attachments.Db;
 using DamageAssesment.Api.Attachments.Interfaces;
 using DamageAssesment.Api.Attachments.Providers;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.AspNetCore.Http.Features;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Extensions.FileProviders;
 using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models;
 using System.Reflection;
 using System.Text;
 var builder = WebApplication.CreateBuilder(args);
-
+var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication(item =>
 {
    item.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    item.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
 }).AddJwtBearer(item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 });
 // Add services to the container.
 builder.Services.AddControllers();
 // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
 builder.Services.AddEndpointsApiExplorer();
 //builder.Services.AddSwaggerGen();
-builder.Services.AddSwaggerGen(c =>
+builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddScoped<IAttachmentsProvider, AttachmentsProvider>();
 builder.Services.AddScoped<IUploadService, UploadService>();
@ -45,6 +95,7 @@ if (app.Environment.IsDevelopment())
    app.UseSwaggerUI();
 }
 app.UseAuthentication();
 app.UseAuthorization();
 app.UseHttpsRedirection();
--- a/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/Controllers/DoculinkController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/Controllers/DoculinkController.cs
@ -2,6 +2,7 @@
 using DamageAssesment.Api.DocuLinks.Interfaces;
 using DamageAssesment.Api.DocuLinks.Models;
 using DamageAssesment.Api.DocuLinks.Providers;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
@ -24,6 +25,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// Get all Doculink type.
        /// </summary>
        [HttpGet]
        [Authorize(Roles = "admin")]
        [Route("doculinks/types")]
        [Route("doculinks/types/{language:alpha}")]
        public async Task<IActionResult> GetLinkTypesAsync(string? language)
@ -38,6 +40,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// Get a Doculink type by id.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpGet]
        [Route("doculinks/types/{id}")]
        [Route("doculinks/types/{id}/{language:alpha}")]
@ -53,6 +56,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// Update a existing Doculink type.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpPut]
        [Route("doculinks/types/{id}")]
        public async Task<IActionResult> UpdateLinkType(int id,Models.LinkType linkType)
@ -74,6 +78,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// Create a new Doculink type.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpPost]
        [Route("doculinks/types")]
        public async Task<IActionResult> CreateLinkType(Models.LinkType linkType)
@ -92,6 +97,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// Delete a  existing Doculink type by id.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpDelete]
        [Route("doculinks/types/{id}")]
        public async Task<IActionResult> DeleteLinkType(int id)
@ -104,9 +110,10 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
            return NotFound();
        }
        /// <summary>
-        /// Get all Doculink.
+        /// Get all documents.
        /// </summary>
-        /// 
+        
        [Authorize(Roles = "admin")]
        [Route("doculinks")]
        [Route("doculinks/{linktype:alpha}")]
        [Route("doculinks/{linktype:alpha}/{language:alpha}")]
@ -140,6 +147,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// Get a Doculink by id.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpGet]
        [Route("doculinks/{id}")]
        [Route("doculinks/{id}/{linktype:alpha}")]
@ -156,6 +164,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// update existing doclink.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpPut]
        [Route("doculinks/{id}")]
        public async Task<IActionResult> UpdateDocument(int id,ReqDoculink documentInfo)
@ -181,6 +190,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// Create new doclink.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpPost]
        [Route("doculinks")]
        public async Task<IActionResult> CreateDocument(ReqDoculink documentInfo)
@ -208,6 +218,7 @@ namespace DamageAssesment.Api.DocuLinks.Controllers
        /// <summary>
        /// Delete Doculink by id.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpDelete]
        [Route("doculinks/{id}")]
        public async Task<IActionResult> DeleteDocument(int id)
--- a/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/DamageAssesment.Api.DocuLinks.csproj
+++ b/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/DamageAssesment.Api.DocuLinks.csproj
@ -10,6 +10,7 @@
  <ItemGroup>
    <PackageReference Include="AutoMapper.Extensions.Microsoft.DependencyInjection" Version="12.0.1" />
    <PackageReference Include="Azure.Storage.Blobs" Version="12.16.0" />
    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="6.0.21" />
    <PackageReference Include="Microsoft.AspNetCore.Hosting" Version="2.2.7" />
    <PackageReference Include="Microsoft.EntityFrameworkCore" Version="7.0.9" />
    <PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="7.0.9">
--- a/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/Program.cs
@ -2,19 +2,69 @@ using DamageAssesment.Api.DocuLinks.Db;
 using DamageAssesment.Api.DocuLinks.Interfaces;
 using DamageAssesment.Api.DocuLinks.Providers;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.IdentityModel.Tokens;
 using System.Reflection;
 using System.Text;
 using Microsoft.OpenApi.Models;
 var builder = WebApplication.CreateBuilder(args);
 // Add services to the container.
-
+var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication(item =>
 {
    item.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    item.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
 }).AddJwtBearer(item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 });
 builder.Services.AddControllers();
-builder.Services.AddSwaggerGen(c =>
+builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
 builder.Services.AddEndpointsApiExplorer();
@ -36,6 +86,7 @@ if (app.Environment.IsDevelopment())
    app.UseSwaggerUI();
 }
 app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
--- a/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/Properties/launchSettings.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/Properties/launchSettings.json
@ -14,7 +14,7 @@
      "dotnetRunMessages": true,
      "launchBrowser": true,
      "launchUrl": "swagger",
-      "applicationUrl": "http://localhost:5133",
+      "applicationUrl": "http://localhost:5136",
      "environmentVariables": {
        "ASPNETCORE_ENVIRONMENT": "Development"
      }
--- a/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/appsettings.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.DocuLinks/appsettings.json
@ -1,4 +1,7 @@
 {
  "JwtSettings": {
    "securitykey": "bWlhbWkgZGFkZSBzY2hvb2xzIHNlY3JldCBrZXk="
  },
  "Logging": {
    "LogLevel": {
      "Default": "Information",
--- a/DamageAssesmentApi/DamageAssesment.Api.Employees/Controllers/EmployeesController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Employees/Controllers/EmployeesController.cs
@ -1,4 +1,5 @@
 using DamageAssesment.Api.Employees.Interfaces;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
@ -18,7 +19,7 @@ namespace DamageAssesment.Api.Employees.Controllers
        /// <summary>
        /// GET request for retrieving employees.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("Employees")]
        public async Task<ActionResult> GetEmployeesAsync()
        {
@ -35,7 +36,7 @@ namespace DamageAssesment.Api.Employees.Controllers
        /// <summary>
        /// GET request for retrieving an employee by ID.
        /// </summary>
-        
+        [Authorize(Roles = "admin")]
        [HttpGet("Employees/{id}")]
        public async Task<ActionResult> GetEmployeeByIdAsync(int id)
        {
@ -53,6 +54,7 @@ namespace DamageAssesment.Api.Employees.Controllers
        /// PUT request for updating an existing employee.
        /// </summary>
        /// <param name="Employee">The updated employee object.</param>
        [Authorize(Roles = "admin")]
        [HttpPut("Employees/{id}")]
        public async Task<IActionResult> UpdateEmployee(int id, Models.Employee Employee)
        {
@ -75,6 +77,7 @@ namespace DamageAssesment.Api.Employees.Controllers
        /// POST request for creating a new employee.
        /// </summary>
        /// <param name="Employee">The employee information for creating a new employee.</param>
        [Authorize(Roles = "admin")]
        [HttpPost("Employees")]
        public async Task<IActionResult> CreateEmployee(Models.Employee Employee)
        {
@ -93,6 +96,7 @@ namespace DamageAssesment.Api.Employees.Controllers
        /// DELETE request for deleting an existing employee.
        /// </summary>
        /// <param name="id">The ID of the employee to be deleted.</param>
        [Authorize(Roles = "admin")]
        [HttpDelete("Employees/{id}")]
        public async Task<IActionResult> DeleteEmployee(int id)
        {
--- a/DamageAssesmentApi/DamageAssesment.Api.Employees/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Employees/Program.cs
@ -1,23 +1,74 @@
 using DamageAssesment.Api.Employees.Db;
 using DamageAssesment.Api.Employees.Interfaces;
 using DamageAssesment.Api.Employees.Providers;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models;
 using System.Reflection;
 using System.Text;
 var builder = WebApplication.CreateBuilder(args);
 // Add services to the container.
 var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication(item =>
 {
    item.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    item.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
 }).AddJwtBearer(item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 });
 builder.Services.AddControllers();
 // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
 builder.Services.AddEndpointsApiExplorer();
 //builder.Services.AddSwaggerGen();
-builder.Services.AddSwaggerGen(c =>
+builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddScoped<IEmployeesProvider, EmployeesProvider>();
@ -43,6 +94,7 @@ if (app.Environment.IsDevelopment())
    }
 }
 app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
--- a/DamageAssesmentApi/DamageAssesment.Api.Employees/appsettings.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.Employees/appsettings.json
@ -9,14 +9,6 @@
    }
  },
  "AllowedHosts": "*",
  "settings": {
    "endpoint1": "xxx",
    "endpoint2": "xxx",
    "endpoint3": "xxx"
  },
  //"ConnectionStrings": {
  //  "EmployeeConnection": "Server=DESKTOP-OF5DPLQ\\SQLEXPRESS;Database=da_survey_dev;Trusted_Connection=True;TrustServerCertificate=True;"
  //},
  "ConnectionStrings": {
    "EmployeeConnection": "Server=tcp:da-dev.database.windows.net,1433;Initial Catalog=da-dev-db;Encrypt=True;User ID=admin-dev;Password=b3tgRABw8LGE75k;TrustServerCertificate=False;Connection Timeout=30;"
--- a/DamageAssesmentApi/DamageAssesment.Api.Locations/Controllers/LocationsController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Locations/Controllers/LocationsController.cs
@ -1,4 +1,5 @@
 using DamageAssesment.Api.Locations.Interfaces;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
@ -15,7 +16,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// Get all locations.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("Locations")]
        public async Task<ActionResult> GetLocationsAsync()
        {
@ -31,7 +32,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// Get all locations based on locationdId.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("Locations/{id}")]
        public async Task<ActionResult> GetLocationByIdAsync(int id)
        {
@ -47,7 +48,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// Update a Location.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPut("Locations/{id}")]
        public async Task<IActionResult> UpdateLocation(int id, Models.Location Location)
        {
@ -65,7 +66,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// Save a new location.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPost("Locations")]
        public async Task<IActionResult> CreateLocation(Models.Location Location)
        {
@ -83,7 +84,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// Delete an existing location.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpDelete("Locations/{id}")]
        public async Task<IActionResult> DeleteLocation(int id)
        {
--- a/DamageAssesmentApi/DamageAssesment.Api.Locations/Controllers/RegionsController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Locations/Controllers/RegionsController.cs
@ -1,4 +1,5 @@
 using DamageAssesment.Api.Locations.Interfaces;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 namespace DamageAssesment.Api.Locations.Controllers
@ -15,7 +16,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// Get all regions.2
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("regions")]
        public async Task<ActionResult> GetRegionsAsync()
        {
@ -29,7 +30,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// GET request for retrieving a region by its ID.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpGet("regions/{id}")]
        public async Task<ActionResult> GetRegionAsync(int id)
        {
@ -43,7 +44,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// POST request for creating a new region.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPost("regions")]
        public async Task<ActionResult> PostRegionAsync(Models.Region region)
        {
@ -57,7 +58,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// <summary>
        /// PUT request for updating an existing region.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpPut("regions/{id}")]
        public async Task<ActionResult> PutRegionAsync(int id, Models.Region region)
        {
@ -75,7 +76,7 @@ namespace DamageAssesment.Api.Locations.Controllers
        /// DELETE request for deleting a region based on ID.
        /// </summary>
-
+        [Authorize(Roles = "admin")]
        [HttpDelete("regions/{id}")]
        public async Task<ActionResult> DeleteRegionAsync(int id)
        {
--- a/DamageAssesmentApi/DamageAssesment.Api.Locations/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Locations/Program.cs
@ -1,23 +1,73 @@
 using DamageAssesment.Api.Locations.Db;
 using DamageAssesment.Api.Locations.Interfaces;
 using DamageAssesment.Api.Locations.Providers;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models;
 using System.Reflection;
 using System.Text;
 var builder = WebApplication.CreateBuilder(args);
 // Add services to the container.
-
+var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication(item =>
 {
    item.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    item.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
 }).AddJwtBearer(item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 });
 builder.Services.AddControllers();
 // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
 builder.Services.AddEndpointsApiExplorer();
 //builder.Services.AddSwaggerGen();
-builder.Services.AddSwaggerGen(c =>
+builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddScoped<ILocationsProvider, LocationsProvider>();
 builder.Services.AddScoped<IRegionsProvider, RegionsProvider>();
@ -26,7 +76,10 @@ builder.Services.AddDbContext<LocationDbContext>(option =>
 {
    option.UseSqlServer("LocationConnection");
 });
 var app = builder.Build();
 // Add services to the container.
 // Configure the HTTP request pipeline.
 if (app.Environment.IsDevelopment())
@ -44,6 +97,7 @@ if (app.Environment.IsDevelopment())
    }
 }
 app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
--- a/DamageAssesmentApi/DamageAssesment.Api.Questions/Controllers/QuestionsController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Questions/Controllers/QuestionsController.cs
@ -1,4 +1,5 @@
 using DamageAssesment.Api.Questions.Interfaces;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 namespace DamageAssesment.Api.Questions.Controllers
@ -10,16 +11,14 @@ namespace DamageAssesment.Api.Questions.Controllers
        public QuestionsController(IQuestionsProvider questionsProvider)
        {
            this.questionsProvider = questionsProvider;
        }
        /// <summary>
        /// GET request for retrieving questions.
        /// </summary>
-        // get all questions
+        //get all questions
        [Authorize(Roles = "admin,survey,user,report")]
        [Route("Questions")]
        [Route("Questions/{language:alpha}")]
        [HttpGet]
@ -37,6 +36,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// <summary>
        /// GET request for retrieving a question by ID.
        /// </summary>
        [Authorize(Roles = "admin,survey,user,report")]
        [Route("Questions/{id}/{language:alpha}")]
        [Route("Questions/{id:int}")]
        [HttpGet]
@ -55,6 +55,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// GET request for retrieving survey questions based on a survey ID.
        /// Uri: {Optional language}/GetSurveyQuestions/{surveyId} :Default returns question in all languages 
        /// </summary>
        [Authorize(Roles = "admin,survey,user,report")]
        [Route("Questions/BySurvey/{surveyId:int}")]
        [Route("Questions/BySurvey/{surveyId:int}/{language:alpha}")]
        [HttpGet]
@ -71,6 +72,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// PUT request for updating a question (multilingual).
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpPut("Questions")]
        public async Task<IActionResult> UpdateQuestion(Models.Question question)
        {
@ -92,6 +94,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// POST request for creating a new question (multilingual).
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpPost("Questions")]
        public async Task<IActionResult> CreateQuestion(Models.Question question)
        {
@ -110,6 +113,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// DELETE request for deleting a question based on ID.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpDelete("Questions/{id}")]
        public async Task<IActionResult> DeleteQuestion(int id)
        {
@ -125,6 +129,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// GET request for retrieving question categories.
        /// </summary>
        [Authorize(Roles = "admin,user,report")]
        [HttpGet("Questions/Categories")]
        [HttpGet("Questions/Categories/{language:alpha}")]
        public async Task<IActionResult> GetQuestionCategoriesAsync(string? language)
@ -139,7 +144,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// <summary>
        /// GET request for retrieving a question category by ID.
        /// </summary>
-
+        [Authorize(Roles = "admin,report")]
        [HttpGet("Questions/Categories/{id:int}")]
        [HttpGet("Questions/Categories/{id:int}/{language:alpha}")]
        public async Task<IActionResult> GetQuestionCategoryAsync(int id,string? language)
@ -156,7 +161,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// <summary>
        /// PUT request for updating a question category.
        /// </summary>
-
+        [Authorize(Roles = "admin,survey,report")]
        [HttpPut("Questions/Categories")]
        public async Task<IActionResult> UpdateQuestionCategory(Models.QuestionCategory questionCategory)
        {
@ -178,6 +183,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// POST request for creating a new question category.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpPost("Questions/Categories")]
        public async Task<IActionResult> CreateQuestionCategory(Models.QuestionCategory questionCategory)
        {
@ -196,6 +202,7 @@ namespace DamageAssesment.Api.Questions.Controllers
        /// DELETE request for deleting a question category based on ID.
        /// </summary>
        [Authorize(Roles = "admin")]
        [HttpDelete("Questions/Categories/{id}")]
        public async Task<IActionResult> DeleteQuestionCategory(int id)
        {
--- a/DamageAssesmentApi/DamageAssesment.Api.Questions/Models/Question.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Questions/Models/Question.cs
@ -12,7 +12,7 @@
        public bool IsRequired { get; set; }
        public bool Comment { get; set; }
        public bool Key { get; set; }
-        public int? SurveyId { get; set; }
+        public int SurveyId { get; set; }
        public int CategoryId { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Questions/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Questions/Program.cs
@ -1,11 +1,33 @@
 using DamageAssesment.Api.Questions.Db;
 using DamageAssesment.Api.Questions.Interfaces;
 using DamageAssesment.Api.Questions.Providers;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models;
 using System.Reflection;
 using System.Text;
 var builder = WebApplication.CreateBuilder(args);
-
+// Add services to the container.
 var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication(item =>
 {
    item.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    item.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
 }).AddJwtBearer(item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 });
 // Add services to the container.
 builder.Services.AddControllers();
@ -17,13 +39,41 @@ builder.Services.AddAutoMapper(AppDomain.CurrentDomain.GetAssemblies());
 builder.Services.AddEndpointsApiExplorer();
 //builder.Services.AddSwaggerGen();
-builder.Services.AddSwaggerGen(c =>
+builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddDbContext<QuestionDbContext>(option =>
 {
    option.UseSqlServer("QuestionConnection");
@ -43,7 +93,7 @@ if (app.Environment.IsDevelopment())
        questionProvider.SeedData();
    }
 }
-
+app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Controllers/SurveyResponsesController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Controllers/SurveyResponsesController.cs
@ -1,28 +1,26 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
-namespace DamageAssesment.Api.SurveyResponses.Controllers
+namespace DamageAssesment.Api.Responses.Controllers
 {
    [ApiController]
-    public class SurveyResponsesController : ControllerBase
+    public class ResponsesController : ControllerBase
    {
        private readonly ISurveysResponse surveyResponseProvider;
-
+        public ResponsesController(ISurveysResponse surveyResponseProvider)
        public SurveyResponsesController(ISurveysResponse surveyResponseProvider)
        {
            this.surveyResponseProvider = surveyResponseProvider;
        }
        /// <summary>
        /// GET request for retrieving survey responses.
        /// </summary>
-
+        [Authorize(Roles = "admin,survey,user,report")]
-        [Route("Responses/{employeeid:int}")]
+        [HttpGet("Responses")]
-        [Route("Responses")]
+        public async Task<ActionResult> GetSurveyResponsesAsync()
        [HttpGet]
        public async Task<ActionResult> GetSurveyResponsesAsync(int? employeeid)
        {
-            var result = await this.surveyResponseProvider.GetSurveyResponsesAsync(employeeid ?? 0);
+            var result = await this.surveyResponseProvider.GetSurveyResponsesAsync();
            if (result.IsSuccess)
            {
                return Ok(result.surveyResponses);
@ -36,12 +34,11 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// <summary>
        /// GET request for retrieving survey responses by survey ID.
        /// </summary>
-        [Route("Responses/BySurvey/{surveyid:int}/{employeeid:int}")]
+        [Authorize(Roles = "admin,survey,user,report")]
-        [Route("Responses/BySurvey/{surveyid:int}")]
+        [HttpGet("Responses/BySurvey/{surveyid}")]
-        [HttpGet]
+        public async Task<ActionResult> GetSurveyResponsesAsync(int surveyid)
        public async Task<ActionResult> GetSurveyResponsesAsync(int surveyid, int? employeeid)
        {
-            var result = await this.surveyResponseProvider.GetSurveyResponsesBySurveyAsync(surveyid, employeeid ?? 0);
+            var result = await this.surveyResponseProvider.GetSurveyResponsesBySurveyAsync(surveyid);
            if (result.IsSuccess)
            {
                return Ok(result.SurveyResponses);
@ -53,17 +50,16 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// </summary>
        /// <param name="surveyid">The ID of the survey for which responses are to be retrieved.</param>
        /// <param name="locationid">The ID of the location for which responses are to be retrieved.</param>
-
+        [Authorize(Roles = "admin,survey,user,report")]
-        [Route("Responses/{surveyid:int}/{locationid:int}/{employeeid:int}")]
+        [HttpGet("Responses/{surveyid}/{locationid}")]
-        [Route("Responses/{surveyid:int}/{locationid:int}")]
+        public async Task<ActionResult> GetSurveyResponsesBySurveyAndLocationAsync(int surveyid, int locationid)
        [HttpGet]
        public async Task<ActionResult> GetSurveyResponsesBySurveyAndLocationAsync(int surveyid, int locationid,int? employeeid)
        {
-            var result = await this.surveyResponseProvider.GetSurveyResponsesBySurveyAndLocationAsync(surveyid, locationid,employeeid ?? 0);
+            var result = await this.surveyResponseProvider.GetSurveyResponsesBySurveyAndLocationAsync(surveyid, locationid);
            if (result.IsSuccess)
            {
                return Ok(result.SurveyResponses);
            }
            return NoContent();
        }
        /// <summary>
@ -72,13 +68,11 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// <param name="surveyId">The ID of the survey for which responses are to be retrieved.</param>
        /// <param name="questionId">The ID of the question for which responses are to be retrieved.</param>
        /// <param name="answer">The answer for which responses are to be retrieved.</param>
-
+        [Authorize(Roles = "admin,survey,user,report")]
-        [Route("Responses/ByAnswer/{surveyid:int}/{questionid:int}/{answer:alpha}/{employeeid:int}")]
+        [HttpGet("Responses/ByAnswer/{surveyid}/{questionid}/{answer}")]
-        [Route("Responses/ByAnswer/{surveyid:int}/{questionid:int}/{answer:alpha}")]
+        public async Task<ActionResult> GetSurveyResponsesByAnswerAsyncAsync(int surveyid, int questionid, string answer)
        [HttpGet]
        public async Task<ActionResult> GetSurveyResponsesByAnswerAsyncAsync(int surveyid, int questionid, string answer, int? employeeid)
        {
-            var result = await surveyResponseProvider.GetResponsesByAnswerAsync(surveyid, questionid, answer, employeeid ?? 0);
+            var result = await surveyResponseProvider.GetResponsesByAnswerAsync(surveyid, questionid, answer);
            if (result.IsSuccess)
            {
                return Ok(result.SurveyResponses);
@ -90,13 +84,11 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// GET request for retrieving answers from survey responses by survey ID and region.
        /// </summary>
        /// <param name="surveyId">The ID of the survey for which answers are to be retrieved.</param>
-
+        [Authorize(Roles = "admin,survey,user,report")]
-        [Route("Responses/ByRegion/{surveyid:int}")]
+        [HttpGet("Responses/ByRegion/{surveyid}")]
-        [Route("Responses/ByRegion/{surveyid:int}/{employeeid}")]
+        public async Task<ActionResult> GetAnswersByRegionAsync(int surveyid)
        [HttpGet]
        public async Task<ActionResult> GetAnswersByRegionAsync(int surveyid, int? employeeid)
        {
-            var result = await this.surveyResponseProvider.GetAnswersByRegionAsync(surveyid, employeeid ?? 0);
+            var result = await this.surveyResponseProvider.GetAnswersByRegionAsync(surveyid);
            if (result.IsSuccess)
            {
                return Ok(result.Answers);
@ -107,12 +99,11 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// GET request for retrieving survey responses by survey ID and maintenance center.
        /// </summary>
        /// <param name="surveyId">The ID of the survey for which responses are to be retrieved.</param>
-        [Route("Responses/ByMaintenanceCenter/{surveyid:int}/{employeeid:int}")]
+        [Authorize(Roles = "admin,survey,user,report")]
-        [Route("Responses/ByMaintenanceCenter/{surveyid:int}")]
+        [HttpGet("Responses/ByMaintenanceCenter/{surveyid}")]
-        [HttpGet]
+        public async Task<ActionResult> GetAnswersByMaintenaceCentersync(int surveyid)
        public async Task<ActionResult> GetAnswersByMaintenaceCentersync(int surveyid, int? employeeid)
        {
-            var result = await this.surveyResponseProvider.GetSurveyResponsesByMaintenanceCenterAsync(surveyid, employeeid ?? 0);
+            var result = await this.surveyResponseProvider.GetSurveyResponsesByMaintenanceCenterAsync(surveyid);
            if (result.IsSuccess)
            {
                return Ok(result.SurveyResponses);
@ -123,7 +114,7 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// GET request for retrieving a survey response by response ID.
        /// </summary>
        /// <param name="responseId">The ID of the survey response to be retrieved.</param>
-
+        [Authorize(Roles = "admin,survey,user,report")]
        [HttpGet("Responses/{id}")]
        public async Task<ActionResult> GetSurveyResponseByIdAsync(int id)
        {
@ -139,7 +130,7 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// POST request for creating a new survey response.
        /// </summary>
        /// <param name="surveyResponse">The survey response object to be created.</param>
-
+        [Authorize(Roles = "admin,survey,user,report")]
        [HttpPost("Responses")]
        public async Task<ActionResult> PostSurveysAsync(Models.SurveyResponse surveyResponse)
        {
@ -155,7 +146,7 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// </summary>
        /// <param name="Id">The ID of the survey response to be updated.</param>
        /// <param name="surveyResponse">The updated survey response object.</param>
-
+        [Authorize(Roles = "admin,survey,user,report")]
        [HttpPut("Responses/{id}")]
        public async Task<ActionResult> PutSurveyResponseAsync(int id, Models.SurveyResponse surveyResponse)
        {
@ -172,7 +163,7 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// <summary>
        /// DELETE request for deleting an existing survey response.
        /// </summary>
-
+        [Authorize(Roles = "admin,survey,user,report")]
        [HttpDelete("Responses/{id}")]
        public async Task<ActionResult> DeleteSurveyResponseAsync(int id)
        {
@ -187,7 +178,7 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
        /// POST request for submitting survey with multiple answers.
        /// </summary>
        /// <param name="request">The answers to be submitted for the survey.</param>
-
+        [Authorize(Roles = "admin,survey,user,report")]
        [HttpPost("Responses/Answers")]
        public async Task<ActionResult> PostSurveyAnswersAsync(Request request)
        {
@ -198,31 +189,5 @@ namespace DamageAssesment.Api.SurveyResponses.Controllers
            else
                return BadRequest(result.ErrorMessage);
        }
        [Route("Responses/Surveys/active/{employeeid:int}")]
        [Route("Responses/Surveys/active/{employeeid:int}/{language:alpha}")]
        [HttpGet]
        public async Task<ActionResult> GetActiveSurveysAsync(int employeeid, string? language)
        {
            var result = await this.surveyResponseProvider.GetActiveSurveysAsync(employeeid, language);
            if (result.IsSuccess)
            {
                return Ok(result.Surveys);
            }
            return NoContent();
        }
        [Route("Responses/Surveys/historic/{employeeid:int}")]
        [Route("Responses/Surveys/historic/{employeeid:int}/{language:alpha}")]
        [HttpGet]
        public async Task<ActionResult> GetHistoricSurveysAsync(int employeeid, string? language)
        {
            var result = await this.surveyResponseProvider.GetHistoricSurveysAsync(employeeid, language);
            if (result.IsSuccess)
            {
                return Ok(result.Surveys);
            }
            return NoContent();
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/DamageAssesment.Api.Responses.csproj
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/DamageAssesment.Api.Responses.csproj
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Db/SurveyResponse.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Db/SurveyResponse.cs
@ -1,7 +1,7 @@
 using System.ComponentModel.DataAnnotations;
 using System.ComponentModel.DataAnnotations.Schema;
-namespace DamageAssesment.Api.SurveyResponses.Db
+namespace DamageAssesment.Api.Responses.Db
 {
    public class SurveyResponse
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Db/SurveyResponseDbContext.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Db/SurveyResponseDbContext.cs
@ -1,6 +1,6 @@
 using Microsoft.EntityFrameworkCore;
-namespace DamageAssesment.Api.SurveyResponses.Db
+namespace DamageAssesment.Api.Responses.Db
 {
    public class SurveyResponseDbContext:DbContext
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IAnswerServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IAnswerServiceProvider.cs
@ -0,0 +1,12 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface IAnswerServiceProvider
    {
        Task<List<Answer>> getAnswersAsync(string token);
        Task<List<Models.Answer>> GetAnswersByResponseIdAsync(int responseId, string token);
        Task<Models.Answer> PostAnswersAsync(Models.Answer answer, string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IAttachmentServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IAttachmentServiceProvider.cs
@ -0,0 +1,10 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface IAttachmentServiceProvider
    {
        Task<List<Attachment>> getAttachmentsAsync(string token);
        Task<IEnumerable<Attachment>> PostAttachmentsAsync(Models.AttachmentInfo attachmentInfo, string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IEmployeeServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IEmployeeServiceProvider.cs
@ -0,0 +1,10 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface IEmployeeServiceProvider
    {
        Task<List<Employee>> getEmployeesAsync(string token);
        Task<Employee> getEmployeeAsync(int employeeId, string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IHttpUtil.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IHttpUtil.cs
@ -0,0 +1,9 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface IHttpUtil
    {
        Task<string> SendAsync(HttpMethod method, string url, string JsonInput, string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/ILocationServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/ILocationServiceProvider.cs
@ -0,0 +1,9 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface ILocationServiceProvider
    {
        Task<List<Location>> getLocationsAsync(string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IQuestionServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IQuestionServiceProvider.cs
@ -0,0 +1,11 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface IQuestionServiceProvider
    {
        Task<List<Question>> getQuestionsAsync(string token);
        Task<List<SurveyQuestions>> getSurveyQuestionsAsync(int surveyId, string token);
        Task<Question> getQuestionsAsync(int questionId, string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IRegionServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/IRegionServiceProvider.cs
@ -0,0 +1,9 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface IRegionServiceProvider
    {
        Task<List<Region>> getRegionsAsync(string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/ISurveyServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Interfaces/ISurveyServiceProvider.cs
@ -0,0 +1,10 @@
 using DamageAssesment.Api.Responses.Models;
 namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface ISurveyServiceProvider
    {
        Task<List<Survey>> getSurveysAsync(string token);
        Task<Survey> getSurveyAsync(int surveyId,string token);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/ISurveysResponse.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/ISurveysResponse.cs
@ -1,23 +1,21 @@
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Microsoft.AspNetCore.Mvc;
-namespace DamageAssesment.Api.SurveyResponses.Interfaces
+namespace DamageAssesment.Api.Responses.Interfaces
 {
    public interface ISurveysResponse
    {
-        Task<(bool IsSuccess, dynamic Answers, string ErrorMessage)> GetAnswersByRegionAsync(int surveyId, int employeeid);
+        Task<(bool IsSuccess, dynamic Answers, string ErrorMessage)> GetAnswersByRegionAsync(int surveyId);
        Task<(bool IsSuccess, Models.SurveyResponse SurveyResponse, string ErrorMessage)> PostSurveyResponseAsync(Models.SurveyResponse surveyResponse);
        // Task<(bool IsSuccess,dynamic surveyResponses, string ErrorMessage)> GetSurveyResponseAsync(int responseId);
-        Task<(bool IsSuccess, dynamic surveyResponses, string ErrorMessage)> GetSurveyResponsesAsync(int employeeid);
+        Task<(bool IsSuccess, dynamic surveyResponses, string ErrorMessage)> GetSurveyResponsesAsync();
        Task<(bool IsSuccess, dynamic Surveys, string ErrorMessage)> GetActiveSurveysAsync(int employeeid, string language);
        Task<(bool IsSuccess, dynamic Surveys, string ErrorMessage)> GetHistoricSurveysAsync(int employeeid, string language);
        Task<(bool IsSuccess, Models.SurveyResponse SurveyResponse, string ErrorMessage)> PutSurveyResponseAsync(int Id, Models.SurveyResponse surveyResponse);
        Task<(bool IsSuccess, Models.SurveyResponse SurveyResponse, string ErrorMessage)> DeleteSurveyResponseAsync(int Id);
        Task<(bool IsSuccess, dynamic SurveyResponse, string ErrorMessage)> GetSurveyResponseByIdAsync(int responseId);
-        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAsync(int surveyId, int employeeid);
+        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAsync(int surveyId);
-        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAndLocationAsync(int surveyId, int locationId, int employeeid);
+        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAndLocationAsync(int surveyId, int locationId);
-        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesByMaintenanceCenterAsync(int surveyId, int employeeid);
+        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesByMaintenanceCenterAsync(int surveyId);
-        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetResponsesByAnswerAsync(int surveyId, int questionId, string answer, int employeeid);
+        Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetResponsesByAnswerAsync(int surveyId, int questionId, string answer);
        Task<(bool IsSuccess, Models.SurveyResponse SurveyResponse, string ErrorMessage)> PostSurveyAnswersAsync(Request request);
    }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Migrations/20230927211458_AzureSurveyResponses.Designer.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Migrations/20230927211458_AzureSurveyResponses.Designer.cs
@ -1,6 +1,6 @@
 // <auto-generated />
 using System;
-using DamageAssesment.Api.SurveyResponses.Db;
+using DamageAssesment.Api.Responses.Db;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.EntityFrameworkCore.Infrastructure;
 using Microsoft.EntityFrameworkCore.Metadata;
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Migrations/20230927211458_AzureSurveyResponses.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Migrations/20230927211458_AzureSurveyResponses.cs
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Migrations/SurveyResponseDbContextModelSnapshot.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Migrations/SurveyResponseDbContextModelSnapshot.cs
@ -1,6 +1,6 @@
 // <auto-generated />
 using System;
-using DamageAssesment.Api.SurveyResponses.Db;
+using DamageAssesment.Api.Responses.Db;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.EntityFrameworkCore.Infrastructure;
 using Microsoft.EntityFrameworkCore.Metadata;
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Answer.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Answer.cs
@ -1,6 +1,6 @@
 using System.ComponentModel.DataAnnotations;
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class Answer
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/AnswerRequest.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/AnswerRequest.cs
@ -1,4 +1,4 @@
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class AnswerRequest
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Attachment.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Attachment.cs
@ -1,6 +1,6 @@
 using System.ComponentModel.DataAnnotations;
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class Attachment
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/AttachmentInfo.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/AttachmentInfo.cs
@ -1,4 +1,4 @@
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class AttachmentInfo
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Employee.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Employee.cs
@ -1,6 +1,6 @@
 using System.ComponentModel.DataAnnotations;
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class Employee
    {
@ -11,6 +11,6 @@ namespace DamageAssesment.Api.SurveyResponses.Models
        public string OfficePhoneNumber { get; set; }
        public string Email { get; set; }
        public bool IsActive { get; set; }
-        public string? PreferredLanguage { get; set; }
+        public string PreferredLanguage { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Location.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Location.cs
@ -1,4 +1,4 @@
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class Location
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Question.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Question.cs
@ -1,6 +1,6 @@
 using System.Collections.Generic;
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
     public class Question
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Region.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Region.cs
@ -1,6 +1,6 @@
 using System.ComponentModel.DataAnnotations;
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class Region
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Request.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Request.cs
@ -1,4 +1,4 @@
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class Request
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Survey.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/Survey.cs
@ -1,6 +1,6 @@
 using System.ComponentModel.DataAnnotations;
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class Survey
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/SurveyQuestion.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/SurveyQuestion.cs
@ -1,4 +1,4 @@
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class SurveyQuestions
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/SurveyResponse.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/SurveyResponse.cs
@ -1,7 +1,7 @@
 using System.ComponentModel.DataAnnotations;
 using System.ComponentModel.DataAnnotations.Schema;
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class SurveyResponse
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/SurveyTranslation.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Models/SurveyTranslation.cs
@ -1,4 +1,4 @@
-namespace DamageAssesment.Api.SurveyResponses.Models
+namespace DamageAssesment.Api.Responses.Models
 {
    public class SurveyTranslation
    {        
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Profiles/SurveyResponsesProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Profiles/SurveyResponsesProvider.cs
@ -1,4 +1,4 @@
-namespace DamageAssesment.Api.SurveyResponses.Profiles
+namespace DamageAssesment.Api.Responses.Profiles
 {
    public class SurveyResponsesProvider : AutoMapper.Profile
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Program.cs
@ -1,10 +1,14 @@
-using DamageAssesment.Api.SurveyResponses.Db;
+using DamageAssesment.Api.Responses.Db;
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Services;
+using DamageAssesment.Api.Responses.Services;
-using DamageAssesment.Api.SurveyResponses.Providers;
+using DamageAssesment.Api.Responses.Providers;
 using Microsoft.EntityFrameworkCore;
 using Polly;
 using System.Reflection;
 using Microsoft.OpenApi.Models;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.IdentityModel.Tokens;
 using System.Text;
 var builder = WebApplication.CreateBuilder(args);
 const int maxApiCallRetries = 3;
@ -14,6 +18,24 @@ const int intervalForCircuitBraker = 5; //5 seconds
 // Add services to the container.
 var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication(item =>
 {
    item.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    item.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
 }).AddJwtBearer(item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 });
 builder.Services.AddControllers();
 // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
@ -26,6 +48,7 @@ builder.Services.AddScoped<IQuestionServiceProvider, QuestionServiceProvider>();
 builder.Services.AddScoped<IEmployeeServiceProvider, EmployeeServiceProvider>();
 builder.Services.AddScoped<IAttachmentServiceProvider, AttachmentServiceProvider>();
 builder.Services.AddScoped<ISurveyServiceProvider, SurveyServiceProvider>();
 builder.Services.AddHttpContextAccessor();
 builder.Services.AddHttpClient<IHttpUtil, HttpUtil>().
    AddTransientHttpErrorPolicy(policy => policy.WaitAndRetryAsync(maxApiCallRetries, _ => TimeSpan.FromSeconds(intervalToRetry))).
@ -35,12 +58,40 @@ builder.Services.AddHttpClient<IHttpUtil, HttpUtil>().
 builder.Services.AddAutoMapper(AppDomain.CurrentDomain.GetAssemblies());
 builder.Services.AddEndpointsApiExplorer();
 //builder.Services.AddSwaggerGen();
-builder.Services.AddSwaggerGen(c =>
+
 builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddDbContext<SurveyResponseDbContext>(option =>
 {
@ -55,6 +106,7 @@ if (app.Environment.IsDevelopment())
    app.UseSwaggerUI();
 }
 app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Properties/launchSettings.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Properties/launchSettings.json
@ -9,7 +9,7 @@
    }
  },
  "profiles": {
-    "DamageAssesment.Api.SurveyResponses": {
+    "DamageAssesment.Api.Responses": {
      "commandName": "Project",
      "dotnetRunMessages": true,
      "launchBrowser": true,
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Providers/SurveyResponsesProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Providers/SurveyResponsesProvider.cs
@ -1,10 +1,10 @@
 using AutoMapper;
-using DamageAssesment.Api.SurveyResponses.Db;
+using DamageAssesment.Api.Responses.Db;
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Microsoft.EntityFrameworkCore;
-namespace DamageAssesment.Api.SurveyResponses.Providers
+namespace DamageAssesment.Api.Responses.Providers
 {
    public class SurveyResponsesProvider : ISurveysResponse
    {
@ -18,8 +18,10 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        private readonly IQuestionServiceProvider questionServiceProvider;
        private readonly ISurveyServiceProvider surveyServiceProvider;
        private readonly IMapper mapper;
        private readonly IHttpContextAccessor httpContextAccessor;
        private string token;
-        public SurveyResponsesProvider(SurveyResponseDbContext surveyResponseDbContext, ILogger<SurveyResponsesProvider> logger, IAnswerServiceProvider answerServiceProvider, IRegionServiceProvider regionServiceProvider, ILocationServiceProvider locationServiceProvider, IEmployeeServiceProvider employeeServiceProvider, IAttachmentServiceProvider attachmentServiceProvider, IQuestionServiceProvider questionServiceProvider, ISurveyServiceProvider surveyServiceProvider, IMapper mapper)
+        public SurveyResponsesProvider(SurveyResponseDbContext surveyResponseDbContext, ILogger<SurveyResponsesProvider> logger, IAnswerServiceProvider answerServiceProvider, IRegionServiceProvider regionServiceProvider, ILocationServiceProvider locationServiceProvider, IEmployeeServiceProvider employeeServiceProvider, IAttachmentServiceProvider attachmentServiceProvider, IQuestionServiceProvider questionServiceProvider, ISurveyServiceProvider surveyServiceProvider, IMapper mapper, IHttpContextAccessor httpContextAccessor)
        {
            this.surveyResponseDbContext = surveyResponseDbContext;
            this.logger = logger;
@ -30,7 +32,18 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
            this.attachmentServiceProvider = attachmentServiceProvider;
            this.questionServiceProvider = questionServiceProvider;
            this.surveyServiceProvider = surveyServiceProvider;
            this.httpContextAccessor = httpContextAccessor;
            this.mapper = mapper;
            token = httpContextAccessor.HttpContext.Request.Headers.Authorization;
            if (token != null)
            {
                token = token.Replace("Bearer ", string.Empty);
            }
            else
            {
                token = "";
            }
            // seedData();
        }
@ -38,31 +51,22 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        {
            if (!surveyResponseDbContext.SurveyResponses.Any())
            {
-                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { SurveyId = 1, EmployeeId = 1, LocationId = 1 });
+                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { Id = 1, SurveyId = 1, EmployeeId = 1, LocationId = 1, ClientDevice = "Mobile", Latitude = 98.8767, Longitute = -129.9897, KeyAnswerResult = "true", CreatedDate = DateTime.Now });
-                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { SurveyId = 1, EmployeeId = 2, LocationId = 1 });
+                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { Id = 2, SurveyId = 1, EmployeeId = 2, LocationId = 2, ClientDevice = "Desktop", Latitude = 98.8767, Longitute = -129.9897, KeyAnswerResult = "true", CreatedDate = DateTime.Now });
-                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { SurveyId = 3, EmployeeId = 3, LocationId = 2 });
+                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { Id = 3, SurveyId = 3, EmployeeId = 4, LocationId = 1, ClientDevice = "Mobile", Latitude = 98.8767, Longitute = -129.9897, KeyAnswerResult = "true", CreatedDate = DateTime.Now });
-                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { SurveyId = 4, EmployeeId = 4, LocationId = 2 });
+                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { Id = 4, SurveyId = 4, EmployeeId = 1, LocationId = 2, ClientDevice = "Desktop", Latitude = 98.8767, Longitute = -129.9897, KeyAnswerResult = "false", CreatedDate = DateTime.Now });
-                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { SurveyId = 1, EmployeeId = 5, LocationId = 3});
+                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { Id = 5, SurveyId = 1, EmployeeId = 4, LocationId = 2, ClientDevice = "Desktop", Latitude = 98.8767, Longitute = -129.9897, KeyAnswerResult = "true", CreatedDate = DateTime.Now });
-                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { SurveyId = 1, EmployeeId = 4, LocationId = 2 });
+                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { Id = 6, SurveyId = 1, EmployeeId = 4, LocationId = 3, ClientDevice = "Desktop", Latitude = 98.8767, Longitute = -129.9897, KeyAnswerResult = "false", CreatedDate = DateTime.Now });
                surveyResponseDbContext.SurveyResponses.Add(new Db.SurveyResponse { SurveyId = 1, EmployeeId = 3, LocationId = 1 });
                surveyResponseDbContext.SaveChanges();
            }
        }
-        public async Task<(bool IsSuccess, dynamic Answers, string ErrorMessage)> GetAnswersByRegionAsync(int surveyId, int employeeid)
+        public async Task<(bool IsSuccess, dynamic Answers, string ErrorMessage)> GetAnswersByRegionAsync(int surveyId)
        {
            try
            {
                logger?.LogInformation("Querying to get SurveyResponse object from DB");
-                IQueryable<Db.SurveyResponse> listSurveyResponse = null;
+                var listSurveyResponse = surveyResponseDbContext.SurveyResponses.Where(s => s.SurveyId == surveyId);
                if (employeeid == 0)
                {
                    listSurveyResponse = surveyResponseDbContext.SurveyResponses.Where(s => s.SurveyId == surveyId);
                }
                else
                {
                    listSurveyResponse = surveyResponseDbContext.SurveyResponses.Where(s => s.SurveyId == surveyId && s.EmployeeId == employeeid);
                }
                if (listSurveyResponse.Any())
                {
@ -112,66 +116,18 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
            }
        }
        public async Task<(bool IsSuccess, dynamic Surveys, string ErrorMessage)> GetActiveSurveysAsync(int employeeid, string language)
        {
            try
            {
                logger?.LogInformation("Querying to get SurveyResponse object from DB");
                //get all the survey that already taken by the employee
                var listOfsurveysId = await surveyResponseDbContext.SurveyResponses.Where(x => x.EmployeeId == employeeid).Select(y => y.SurveyId).ToListAsync();
                var surveys = await surveyServiceProvider.getSurveysAsync(language);
                if (surveys != null)
                {
                    surveys = surveys.Where(s => s.IsEnabled == true && s.StartDate <= DateTime.Now && s.EndDate >= DateTime.Now).ToList();
                }
-                if (listOfsurveysId==null || listOfsurveysId.Count == 0)
+        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAsync(int surveyId)
                    return (true, surveys, null);
                var activeSurveys = surveys.Where(s => s.IsEnabled == true && s.StartDate <= DateTime.Now && s.EndDate >= DateTime.Now && !listOfsurveysId.Contains(s.Id));
                return (true, activeSurveys, null);
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, dynamic Surveys, string ErrorMessage)> GetHistoricSurveysAsync(int employeeid, string language)
        {
            try
            {
                logger?.LogInformation("Querying to get SurveyResponse object from DB");
                //get all the survey that already taken by the employee
                var surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.EmployeeId == employeeid).ToListAsync();
                var surveys = await surveyServiceProvider.getSurveysAsync(language);
                var historicSurveys = from s in surveys
                                      from r in surveyResponses
                                      where s.Id == r.SurveyId
                                      select s;
                return (true, historicSurveys, null);
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAsync(int surveyId, int employeeid)
        {
            try
            {
                logger?.LogInformation("Querying to get Survey object from microservice");
-                var survey = await surveyServiceProvider.getSurveyAsync(surveyId);
+                var survey = await surveyServiceProvider.getSurveyAsync(surveyId,token);
                if (survey != null)
                {
-                    var answers = await getSurveyResponsesBySurveyIdAsync(surveyId, employeeid);
+                    var answers = await getSurveyResponsesBySurveyIdAsync(surveyId);
                    if (answers != null)
                        return (true, answers, "Request Successful.");
@ -193,16 +149,16 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
            }
        }
-        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAndLocationAsync(int surveyId, int locationId, int employeeid)
+        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesBySurveyAndLocationAsync(int surveyId, int locationId)
        {
            try
            {
                logger?.LogInformation("Querying to get Survey object from microservice");
-                var survey = await surveyServiceProvider.getSurveyAsync(surveyId);
+                var survey = await surveyServiceProvider.getSurveyAsync(surveyId, token);
                if (survey != null)
                {
-                    var answers = await getSurveyResponsesBySurveyIdLocationIdAsync(surveyId, locationId, employeeid);
+                    var answers = await getSurveyResponsesBySurveyIdLocationIdAsync(surveyId, locationId);
                    if (answers != null)
                        return (true, answers, "Request Successful.");
@ -224,16 +180,16 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
            }
        }
-        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesByMaintenanceCenterAsync(int surveyId, int employeeid)
+        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetSurveyResponsesByMaintenanceCenterAsync(int surveyId)
        {
            try
            {
                logger?.LogInformation("Querying to get Survey object from microservice");
-                var survey = await surveyServiceProvider.getSurveyAsync(surveyId);
+                var survey = await surveyServiceProvider.getSurveyAsync(surveyId, token);
                if (survey != null)
                {
-                    var answers = await getResultsByMaintenanceCenterAsync(surveyId, employeeid);
+                    var answers = await getResultsByMaintenanceCenterAsync(surveyId);
                    if (answers != null)
                        return (true, answers, "Request Successful.");
@ -255,19 +211,19 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
            }
        }
-        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetResponsesByAnswerAsync(int surveyId, int questionId, string answer, int employeeid)
+        public async Task<(bool IsSuccess, dynamic SurveyResponses, string ErrorMessage)> GetResponsesByAnswerAsync(int surveyId, int questionId, string answer)
        {
            try
            {
                logger?.LogInformation("Querying to get Survey object from microservice");
-                var survey = await surveyServiceProvider.getSurveyAsync(surveyId);
+                var survey = await surveyServiceProvider.getSurveyAsync(surveyId, token);
-                var question = await questionServiceProvider.getQuestionsAsync(questionId);
+                var question = await questionServiceProvider.getQuestionsAsync(questionId,token);
                bool IsCorrectAnswer = answer.ToLower().Equals("yes") || answer.ToLower().Equals("no") ? true : false;
                if (survey != null && question != null && IsCorrectAnswer)
                {
-                    var answers = await getSurveyResponsesByAnswerAsync(survey, question, answer, employeeid);
+                    var answers = await getSurveyResponsesByAnswerAsync(survey, question, answer);
                    if (answers != null)
                        return (true, answers, "Request Successful.");
@ -290,18 +246,18 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        }
-        public async Task<(bool IsSuccess, dynamic surveyResponses, string ErrorMessage)> GetSurveyResponsesAsync(int employeeid)
+        public async Task<(bool IsSuccess, dynamic surveyResponses, string ErrorMessage)> GetSurveyResponsesAsync()
        {
            try
            {
-                var responses = await getAllSurveyResponsesAsync(employeeid);
+                var answers = await getAllSurveyResponsesAsync();
-                if (responses != null)
+                if (answers != null)
-                    return (true, responses, "Request Successful.");
+                    return (true, answers, "Request Successful.");
                else
                {
-                    responses = new List<Models.SurveyResponse>();
+                    answers = new List<Models.SurveyResponse>();
-                    return (true, responses, "Empty object returned");
+                    return (true, answers, "Empty object returned");
                }
            }
            catch (Exception ex)
@ -402,7 +358,7 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        {
            try
            {
-                var answersList = await answerServiceProvider.getAnswersAsync();
+                var answersList = await answerServiceProvider.getAnswersAsync(token);
                if (answersList == null || !answersList.Any())
                    return null;
@ -425,8 +381,8 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                if (surveyAnswers == null || !surveyAnswers.Any())
                    return null;
-                var regions = await regionServiceProvider.getRegionsAsync();
+                var regions = await regionServiceProvider.getRegionsAsync(token);
-                var locations = await locationServiceProvider.getLocationsAsync();
+                var locations = await locationServiceProvider.getLocationsAsync(token);
                if (regions == null || !regions.Any() || locations == null || !locations.Any())
                    return null;
@ -471,7 +427,7 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                                  where u.RegionId.Equals(region.Id)
                                  select u.Answers; 
-                    resultList.Add(new { RegionId = region.Id, region.Name, region.Abbreviation, Answers = answers });
+                    resultList.Add(new { RegionId = region.Id, region.Name, region.Abbreviation, Answers = answers});
                }
                //return the object result
                return new { Regions = resultList };
@ -488,11 +444,11 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        {
            try
            {
-                var employee = await employeeServiceProvider.getEmployeeAsync(surveyResponse.EmployeeId);
+                var employee = await employeeServiceProvider.getEmployeeAsync(surveyResponse.EmployeeId, token);
-                var answers = await answerServiceProvider.GetAnswersByResponseIdAsync(surveyResponse.Id);
+                var answers = await answerServiceProvider.GetAnswersByResponseIdAsync(surveyResponse.Id, token);
-                var allQuestions = await questionServiceProvider.getQuestionsAsync();
+                var allQuestions = await questionServiceProvider.getQuestionsAsync(token);
                var questions = allQuestions.Where(s => s.SurveyId == surveyResponse.SurveyId);
-                var attachments = await attachmentServiceProvider.getAttachmentsAsync();
+                var attachments = await attachmentServiceProvider.getAttachmentsAsync(token);
                var result = new
                {
@ -527,34 +483,19 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        //Method to get Survey Responses by surveyId
-        private async Task<dynamic> getSurveyResponsesBySurveyIdAsync(int surveyId, int employeeid)
+        private async Task<dynamic> getSurveyResponsesBySurveyIdAsync(int surveyId)
        {
            try
            {
-                List<Db.SurveyResponse> surveyResonses = null;
+                var surveyResonses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId).ToListAsync();
-                Employee employee = null;
+                var employees = await employeeServiceProvider.getEmployeesAsync(token);
-                List<Employee> employees = null;
+                var answers = await answerServiceProvider.getAnswersAsync(token);
-                if (employeeid == 0)
+                var questions = await questionServiceProvider.getQuestionsAsync(token);
                {
                    surveyResonses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId).ToListAsync();
                    employees = await employeeServiceProvider.getEmployeesAsync();
                }
                else
                {
                    surveyResonses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId && x.EmployeeId == employeeid).ToListAsync();
                    employee = await employeeServiceProvider.getEmployeeAsync(employeeid);
                }
                var answers = await answerServiceProvider.getAnswersAsync();
                var questions = await questionServiceProvider.getQuestionsAsync();
                var surveyQuestions = from q in questions where q.SurveyId == surveyId select q;
                //var surveyQuestions = await questionServiceProvider.getSurveyQuestionsAsync(surveyId);
-                var attachments = await attachmentServiceProvider.getAttachmentsAsync();
+                var attachments = await attachmentServiceProvider.getAttachmentsAsync(token);
                if (employeeid == 0)
                {
                var result = from r in surveyResonses
                             select new
                             {
@ -582,41 +523,6 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                             };
                return result;
            }
                else
                {
                    object _employee = new { };
                    if (employee != null)
                    {
                        _employee = new { employee.Id, employee.Name, employee.BirthDate, employee.Email, employee.OfficePhoneNumber };
                    }
                    var result = from r in surveyResonses
                                 select new
                                 {
                                     r.Id,
                                     r.SurveyId,
                                     r.LocationId,
                                     r.EmployeeId,
                                     r.ClientDevice,
                                     r.KeyAnswerResult,
                                     r.Longitute,
                                     r.Latitude,
                                     Employee = _employee,
                                     answers = from ans in answers
                                               where ans.SurveyResponseId == r.Id
                                               select new
                                               {
                                                   ans.Id,
                                                   ans.QuestionId,
                                                   ans.AnswerText,
                                                   ans.Comment,
                                                   Questions = (from q in questions where q.Id == ans.QuestionId select new { q.Id, q.QuestionNumber, q.CategoryId, q.Text }).SingleOrDefault(),
                                                   Attachments = from att in attachments where att.AnswerId == ans.Id select new { att.Id, att.URI }
                                               }
                                 };
                    return result;
                }
            }
            catch (Exception ex)
            {
                logger?.LogError($"Exception Found : {ex.Message} - Ref: SurveyResponsesProvider.getSurveyResponseBySurveyIdAsync()");
@ -626,34 +532,15 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        //Method to get All Survey Responses
-        private async Task<dynamic> getAllSurveyResponsesAsync(int employeeid)
+        private async Task<dynamic> getAllSurveyResponsesAsync()
        {
            try
            {
-                List<Db.SurveyResponse> surveyResonses = null;
+                var surveyResonses = await surveyResponseDbContext.SurveyResponses.ToListAsync();
-                Employee employee = null;
+                var employees = await employeeServiceProvider.getEmployeesAsync(token);
-                List<Employee> employees = null;
+                var answers = await answerServiceProvider.getAnswersAsync(token);
-                object _employee = new { };
+                var questions = await questionServiceProvider.getQuestionsAsync(token);
-                if (employeeid == 0)
+                var attachments = await attachmentServiceProvider.getAttachmentsAsync(token);
                {
                    surveyResonses = await surveyResponseDbContext.SurveyResponses.ToListAsync();
                    employees = await employeeServiceProvider.getEmployeesAsync();
                }
                else
                {
                    surveyResonses = await surveyResponseDbContext.SurveyResponses.Where(x => x.EmployeeId == employeeid).ToListAsync();
                    employee = await employeeServiceProvider.getEmployeeAsync(employeeid);
                    if (employee != null)
                    {
                        _employee = new { employee.Id, employee.Name, employee.BirthDate, employee.Email, employee.OfficePhoneNumber };
                    }
                }
                var answers = await answerServiceProvider.getAnswersAsync();
                var questions = await questionServiceProvider.getQuestionsAsync();
                var attachments = await attachmentServiceProvider.getAttachmentsAsync();
                var result = from r in surveyResonses
                             select new
@ -666,7 +553,7 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                                 r.KeyAnswerResult,
                                 r.Longitute,
                                 r.Latitude,
-                                 Employee = employeeid != 0 ? _employee : (from e in employees where r.EmployeeId == e.Id select new { e.Id, e.Name, e.BirthDate, e.Email, e.OfficePhoneNumber }).SingleOrDefault(),
+                                 Employee = (from e in employees where r.EmployeeId == e.Id select new { e.Id, e.Name, e.BirthDate, e.Email, e.OfficePhoneNumber }).SingleOrDefault(),
                                 answers = from ans in answers
                                           where ans.SurveyResponseId == r.Id
                                           select new
@ -680,8 +567,6 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                                           }
                             };
                return result;
            }
            catch (Exception ex)
            {
@ -692,21 +577,13 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        //Method to get Answers By Maintenance Center by surveyId
-        private async Task<dynamic> getResultsByMaintenanceCenterAsync(int surveyId, int employeeid)
+        private async Task<dynamic> getResultsByMaintenanceCenterAsync(int surveyId)
        {
            try
            {
-                List<Db.SurveyResponse> surveyResponses = null;
+                var surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId).ToListAsync();
-                if (employeeid == 0)
+                var answers = await answerServiceProvider.getAnswersAsync(token);
-                {
+                var locations = await locationServiceProvider.getLocationsAsync(token);
                    surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId).ToListAsync();
                }
                else
                {
                    surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId && x.EmployeeId == employeeid).ToListAsync();
                }
                var answers = await answerServiceProvider.getAnswersAsync();
                var locations = await locationServiceProvider.getLocationsAsync();
                var maintenanceCenters = locations.DistinctBy(m => m.MaintenanceCenter);
                //get all the answers for the particular survey
@ -760,35 +637,16 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        }
        //Method to get Survey Responses by surveyId and LocationId
-        private async Task<dynamic> getSurveyResponsesBySurveyIdLocationIdAsync(int surveyId, int locationId, int employeeid)
+        private async Task<dynamic> getSurveyResponsesBySurveyIdLocationIdAsync(int surveyId, int locationId)
        {
            try
            {
-                List<Db.SurveyResponse> surveyResonses = null;
+                var surveyResonses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId && x.LocationId.Equals(locationId)).ToListAsync();
-                Employee employee = null;
+                var employees = await employeeServiceProvider.getEmployeesAsync(token);
-                List<Employee> employees = null;
+                var answers = await answerServiceProvider.getAnswersAsync(token);
-                object _employee = new { };
+                var questions = await questionServiceProvider.getQuestionsAsync(token);
                if (employeeid == 0)
                {
                    surveyResonses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId && x.LocationId == locationId).ToListAsync();
                    employees = await employeeServiceProvider.getEmployeesAsync();
                }
                else
                {
                    surveyResonses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == surveyId && x.EmployeeId == employeeid && x.LocationId == locationId).ToListAsync();
                    employee = await employeeServiceProvider.getEmployeeAsync(employeeid);
                    if (employee != null)
                    {
                        _employee = new { employee.Id, employee.Name, employee.BirthDate, employee.Email, employee.OfficePhoneNumber };
                    }
                }
                var answers = await answerServiceProvider.getAnswersAsync();
                var questions = await questionServiceProvider.getQuestionsAsync();
                var surveyQuestions = from q in questions where q.SurveyId == surveyId select q;
-                var attachments = await attachmentServiceProvider.getAttachmentsAsync();
+                var attachments = await attachmentServiceProvider.getAttachmentsAsync(token);
                var result = from r in surveyResonses
                             select new
@ -801,7 +659,7 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                                 r.KeyAnswerResult,
                                 r.Longitute,
                                 r.Latitude,
-                                 Employee = employeeid != 0 ? _employee : (from e in employees where r.EmployeeId == e.Id select new { e.Id, e.Name, e.BirthDate, e.Email, e.OfficePhoneNumber }).SingleOrDefault(),
+                                 Employee = (from e in employees where r.EmployeeId == e.Id select new { e.Id, e.Name, e.BirthDate, e.Email, e.OfficePhoneNumber }).SingleOrDefault(),
                                 answers = from ans in answers
                                           where ans.SurveyResponseId == r.Id
@ -816,7 +674,6 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                                           }
                             };
                return result;
            }
            catch (Exception ex)
            {
@ -827,35 +684,14 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        //Method to get Survey Responses by surveyId questionId and answer
-        private async Task<dynamic> getSurveyResponsesByAnswerAsync(Survey survey, Question question, string answer, int employeeid)
+        private async Task<dynamic> getSurveyResponsesByAnswerAsync(Survey survey, Question question, string answer)
        {
            try
            {
-                List<Db.SurveyResponse> surveyResponses = null;
+                var surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == survey.Id).ToListAsync();
-                Employee employee = null;
+                var answers = await answerServiceProvider.getAnswersAsync(token);
-                List<Employee> employees = null;
+                var employees = await employeeServiceProvider.getEmployeesAsync(token);
-                object _employee = new { };
+                var attachments = await attachmentServiceProvider.getAttachmentsAsync(token);
                if (employeeid == 0)
                {
                    surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == survey.Id).ToListAsync();
                    employees = await employeeServiceProvider.getEmployeesAsync();
                }
                else
                {
                    surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == survey.Id && x.EmployeeId == employeeid).ToListAsync();
                    employee = await employeeServiceProvider.getEmployeeAsync(employeeid);
                    if (employee != null)
                    {
                        _employee = new { employee.Id, employee.Name, employee.BirthDate, employee.Email, employee.OfficePhoneNumber };
                    }
                }
                //var surveyResponses = await surveyResponseDbContext.SurveyResponses.Where(x => x.SurveyId == survey.Id).ToListAsync();
                // var employees = await employeeServiceProvider.getEmployeesAsync();
                var answers = await answerServiceProvider.getAnswersAsync();
                var attachments = await attachmentServiceProvider.getAttachmentsAsync();
                var result = from r in surveyResponses
                             select new
@ -868,7 +704,7 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
                                 r.KeyAnswerResult,
                                 r.Longitute,
                                 r.Latitude,
-                                 Employee = employeeid != 0 ? _employee : (from e in employees where r.EmployeeId == e.Id select new { e.Id, e.Name, e.BirthDate, e.Email, e.OfficePhoneNumber }).SingleOrDefault(),
+                                 Employee = (from e in employees where r.EmployeeId == e.Id select new { e.Id, e.Name, e.BirthDate, e.Email, e.OfficePhoneNumber }).SingleOrDefault(),
                                 answers = from ans in answers
                                           where ans.SurveyResponseId == r.Id
                                           && ans.QuestionId == question.Id
@ -898,12 +734,12 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
        {
            if (answerRequest != null)
            {
-                var answer = await answerServiceProvider.PostAnswersAsync(new Models.Answer { QuestionId = answerRequest.QuestionId, AnswerText = answerRequest.AnswerText, Comment = answerRequest.Comment, SurveyResponseId = surveyResponseId });
+                var answer = await answerServiceProvider.PostAnswersAsync(new Models.Answer { QuestionId = answerRequest.QuestionId, AnswerText = answerRequest.AnswerText, Comment = answerRequest.Comment, SurveyResponseId = surveyResponseId }, token);
                if (answer != null)
                {
                    List<AnswerInfo> listAnswerInfo = new List<AnswerInfo>();
                    listAnswerInfo.Add(new AnswerInfo { AnswerId = answer.Id, postedFiles = answerRequest.PostedFiles });
-                    var attachments = attachmentServiceProvider.PostAttachmentsAsync(new AttachmentInfo { ResponseId = surveyResponseId, Answers = listAnswerInfo });
+                    var attachments = attachmentServiceProvider.PostAttachmentsAsync(new AttachmentInfo { ResponseId = surveyResponseId, Answers = listAnswerInfo }, token);
                    string message = $"Answer for question {answerRequest.QuestionId} saved to the database";
                    logger?.LogInformation(message);
@ -924,14 +760,13 @@ namespace DamageAssesment.Api.SurveyResponses.Providers
            }
        }
        public async Task<(bool IsSuccess, Models.SurveyResponse SurveyResponse, string ErrorMessage)> PostSurveyAnswersAsync(Models.Request request)
        {
            try
            {
                if (request != null)
                {
-                    var response = await PostSurveyResponseAsync(new Models.SurveyResponse { SurveyId = request.SurveyId, EmployeeId = request.EmployeeId, LocationId = request.LocationId, ClientDevice = request.ClientDevice, KeyAnswerResult = request.KeyAnswerResult, Latitude = Convert.ToDouble(request.Latitude), Longitute = Convert.ToDouble(request.Longitute), CreatedDate = DateTime.Now });
+                    var response = await PostSurveyResponseAsync(new Models.SurveyResponse { SurveyId = request.SurveyId, EmployeeId = request.EmployeeId, LocationId = request.LocationId, ClientDevice = request.ClientDevice, KeyAnswerResult = request.KeyAnswerResult, Latitude = Convert.ToDouble(request.Latitude), Longitute = Convert.ToDouble(request.Longitute), CreatedDate=DateTime.Now });
                    if (response.IsSuccess)
                    {
                        var surveyResponse = response.SurveyResponse;
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/AnswerServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/AnswerServiceProvider.cs
@ -1,20 +1,21 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Microsoft.Extensions.Primitives;
 using Newtonsoft.Json;
-namespace DamageAssesment.Api.SurveyResponses.Services
+namespace DamageAssesment.Api.Responses.Services
 {
    public class AnswerServiceProvider : ServiceProviderBase, IAnswerServiceProvider
    {
        public AnswerServiceProvider(IConfiguration configuration, IHttpUtil httpUtil, ILogger<AnswerServiceProvider> logger) : base(configuration, httpUtil, logger, configuration.GetValue<string>("RessourceSettings:Answer"), configuration.GetValue<string>("EndPointSettings:AnswerUrlBase"))
        {
        }
-        public async Task<List<Answer>> getAnswersAsync()
+        public async Task<List<Answer>> getAnswersAsync(string token)
        {
            try
            {
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                var answers = JsonConvert.DeserializeObject<List<Answer>>(responseJsonString);
                if (answers == null || !answers.Any())
@ -28,12 +29,12 @@ namespace DamageAssesment.Api.SurveyResponses.Services
            }
        }
-        public async Task<List<Answer>> GetAnswersByResponseIdAsync(int responseId)
+        public async Task<List<Answer>> GetAnswersByResponseIdAsync(int responseId, string token)
        {
            try
            {
                url = urlBase + string.Format(configuration.GetValue<string>("RessourceSettings:AnswerByResponse"), responseId);
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null,token);
                var answers = JsonConvert.DeserializeObject<List<Answer>>(responseJsonString);
                if (answers == null || !answers.Any())
@ -47,12 +48,12 @@ namespace DamageAssesment.Api.SurveyResponses.Services
            }
        }
-        public async Task<Answer> PostAnswersAsync(Answer answer)
+        public async Task<Answer> PostAnswersAsync(Answer answer, string token )
        {
            try
            {
                var requestJsonString = JsonConvert.SerializeObject(answer);
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Post, url, requestJsonString);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Post, url, requestJsonString, token);
                var answers = JsonConvert.DeserializeObject<Answer>(responseJsonString);
                if (answers == null)
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/AttachmentServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/AttachmentServiceProvider.cs
@ -1,8 +1,8 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Newtonsoft.Json;
-namespace DamageAssesment.Api.SurveyResponses.Services
+namespace DamageAssesment.Api.Responses.Services
 {
    public class AttachmentServiceProvider : ServiceProviderBase, IAttachmentServiceProvider
    {
@ -10,11 +10,11 @@ namespace DamageAssesment.Api.SurveyResponses.Services
        {
        }
-        public async Task<List<Attachment>> getAttachmentsAsync()
+        public async Task<List<Attachment>> getAttachmentsAsync(string token)
        {
            try
            {
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null,token);
                var attachments = JsonConvert.DeserializeObject<List<Attachment>>(responseJsonString);
                if (attachments == null || !attachments.Any())
@ -28,12 +28,12 @@ namespace DamageAssesment.Api.SurveyResponses.Services
            }
        }
-        public async Task<IEnumerable<Attachment>> PostAttachmentsAsync(AttachmentInfo attachmentInfo)
+        public async Task<IEnumerable<Attachment>> PostAttachmentsAsync(AttachmentInfo attachmentInfo, string token)
        {
            try
            {
                var requestJsonString = JsonConvert.SerializeObject(attachmentInfo);
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Post, url, requestJsonString);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Post, url, requestJsonString, token);
                var attachments = JsonConvert.DeserializeObject<IEnumerable<Attachment>>(responseJsonString);
                if (attachments == null)
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Services/EmployeeServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Services/EmployeeServiceProvider.cs
@ -0,0 +1,51 @@
 using DamageAssesment.Api.Responses.Interfaces;
 using DamageAssesment.Api.Responses.Models;
 using Microsoft.AspNetCore.Mvc.Routing;
 using Newtonsoft.Json;
 namespace DamageAssesment.Api.Responses.Services
 {
    public class EmployeeServiceProvider : ServiceProviderBase, IEmployeeServiceProvider
    {
        public EmployeeServiceProvider(IConfiguration configuration, IHttpUtil httpUtil, ILogger<EmployeeServiceProvider> logger) : base(configuration, httpUtil, logger, configuration.GetValue<string>("RessourceSettings:Employee"), configuration.GetValue<string>("EndPointSettings:EmployeeUrlBase"))
        {
        }
        public async Task<List<Employee>> getEmployeesAsync(string token)
        {
            try
            {
                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null,token);
                var employees = JsonConvert.DeserializeObject<List<Employee>>(responseJsonString);
                if (employees == null || !employees.Any())
                    return new List<Employee>();
                else return employees;
            }
            catch (Exception ex)
            {
                logger?.LogError($"Exception Found : {ex.Message} - Ref: EmployeeServiceProvider.getEmployeesAsync()");
                return new List<Employee>();
            }
        }
        public async Task<Employee> getEmployeeAsync(int employeeId, string token)
        {
            try
            {
                url = urlBase + string.Format(configuration.GetValue<string>("RessourceSettings:EmployeeById"), employeeId); 
                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                var employee = JsonConvert.DeserializeObject<Employee>(responseJsonString);
                if (employee == null)
                    return null;
                else return employee;
            }
            catch (Exception ex)
            {
                logger?.LogError($"Exception Found : {ex.Message} - Ref: EmployeeServiceProvider.getEmployeeAsync()");
                return null;
            }
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Responses/Services/HttpUtil.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Responses/Services/HttpUtil.cs
@ -0,0 +1,42 @@
 using DamageAssesment.Api.Responses.Interfaces;
 using DamageAssesment.Api.Responses.Models;
 using System.Net.Http.Headers;
 using System.Text;
 namespace DamageAssesment.Api.Responses.Services
 {
    public class HttpUtil : IHttpUtil
    {
        private readonly HttpClient httpClient;
        private readonly ILogger<HttpUtil> logger;
        public HttpUtil(HttpClient httpClient, ILogger<HttpUtil> logger)
        {
            this.httpClient = httpClient;
            this.logger = logger;
        }
        public async Task<string> SendAsync(HttpMethod method, string url, string JsonInput, string token)
        {
            try
            {
                var request = new HttpRequestMessage(method, url);
                request.Headers.Accept.Clear();
                request.Headers.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
                request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", token);
                if (method == HttpMethod.Post)
                {
                    request.Content = new StringContent(JsonInput, Encoding.UTF8, "application/json");
                }
                var response = await httpClient.SendAsync(request, CancellationToken.None);
                response.EnsureSuccessStatusCode();
                var responseString = await response.Content.ReadAsStringAsync();
                return responseString;
            }
            catch (Exception ex)
            {
                logger?.LogError($"Exception Message : {ex.Message} - Ref: HttpUtil.SendAsync()");
                return null;
            }
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/LocationServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/LocationServiceProvider.cs
@ -1,8 +1,8 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Newtonsoft.Json;
-namespace DamageAssesment.Api.SurveyResponses.Services
+namespace DamageAssesment.Api.Responses.Services
 {
    public class LocationServiceProvider :ServiceProviderBase, ILocationServiceProvider
    {
@ -10,11 +10,11 @@ namespace DamageAssesment.Api.SurveyResponses.Services
        {
        }
-        public async Task<List<Location>> getLocationsAsync()
+        public async Task<List<Location>> getLocationsAsync(string token)
        {
            try
            {
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                var locations = JsonConvert.DeserializeObject<List<Location>>(responseJsonString);
                if (locations == null || !locations.Any())
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/QuestionServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/QuestionServiceProvider.cs
@ -1,8 +1,8 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Newtonsoft.Json;
-namespace DamageAssesment.Api.SurveyResponses.Services
+namespace DamageAssesment.Api.Responses.Services
 {
    public class QuestionServiceProvider : ServiceProviderBase, IQuestionServiceProvider
    {
@ -10,11 +10,11 @@ namespace DamageAssesment.Api.SurveyResponses.Services
        {
        }
-        public async Task<List<Question>> getQuestionsAsync()
+        public async Task<List<Question>> getQuestionsAsync(string token)
        {
            try
            {
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null,token);
                var questions = JsonConvert.DeserializeObject<List<Question>>(responseJsonString);
                if (questions == null || !questions.Any())
@ -28,12 +28,12 @@ namespace DamageAssesment.Api.SurveyResponses.Services
            }
        }
-        public async Task<List<SurveyQuestions>> getSurveyQuestionsAsync(int surveyId)
+        public async Task<List<SurveyQuestions>> getSurveyQuestionsAsync(int surveyId, string token)
        {
            try
            {
                url = urlBase + string.Format(configuration.GetValue<string>("RessourceSettings:SurveyQuestion"), surveyId);
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                var questions = JsonConvert.DeserializeObject<List<SurveyQuestions>>(responseJsonString);
                if (questions == null || !questions.Any())
@ -48,12 +48,12 @@ namespace DamageAssesment.Api.SurveyResponses.Services
        }
-        public async Task<Question> getQuestionsAsync(int questionId)
+        public async Task<Question> getQuestionsAsync(int questionId, string token)
        {
            try
            {
                url = urlBase + string.Format(configuration.GetValue<string>("RessourceSettings:QuestionById"), questionId);
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                var question = JsonConvert.DeserializeObject<Question>(responseJsonString);
                if (question == null)
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/RegionServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/RegionServiceProvider.cs
@ -1,19 +1,19 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Newtonsoft.Json;
-namespace DamageAssesment.Api.SurveyResponses.Services
+namespace DamageAssesment.Api.Responses.Services
 {
    public class RegionServiceProvider : ServiceProviderBase, IRegionServiceProvider
    {
        public RegionServiceProvider(IConfiguration configuration, IHttpUtil httpUtil, ILogger<RegionServiceProvider> logger) : base(configuration, httpUtil, logger, configuration.GetValue<string>("RessourceSettings:Region"), configuration.GetValue<string>("EndPointSettings:LocationUrlBase"))
        {
        }
-        public async Task<List<Region>> getRegionsAsync()
+        public async Task<List<Region>> getRegionsAsync(string token)
        {
            try
            {
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                var regions = JsonConvert.DeserializeObject<List<Region>>(responseJsonString);
                if (regions == null || !regions.Any())
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/ServiceProviderBase.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/ServiceProviderBase.cs
@ -1,6 +1,6 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-namespace DamageAssesment.Api.SurveyResponses.Services
+namespace DamageAssesment.Api.Responses.Services
 {
    public class ServiceProviderBase
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/SurveyServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Services/SurveyServiceProvider.cs
@ -1,22 +1,20 @@
-using DamageAssesment.Api.SurveyResponses.Interfaces;
+using DamageAssesment.Api.Responses.Interfaces;
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.Responses.Models;
 using Newtonsoft.Json;
-namespace DamageAssesment.Api.SurveyResponses.Services
+namespace DamageAssesment.Api.Responses.Services
 {
-    public class SurveyServiceProvider : ServiceProviderBase, ISurveyServiceProvider
+    public class SurveyServiceProvider :ServiceProviderBase, ISurveyServiceProvider
    {
        public SurveyServiceProvider(IConfiguration configuration, IHttpUtil httpUtil, ILogger<EmployeeServiceProvider> logger) : base(configuration, httpUtil, logger, configuration.GetValue<string>("RessourceSettings:Survey"), configuration.GetValue<string>("EndPointSettings:SurveyUrlBase"))
        {
        }
-        public async Task<List<Survey>> getSurveysAsync(string language)
+        public async Task<List<Survey>> getSurveysAsync(string token)
        {
            try
            {
-                if (!string.IsNullOrEmpty(language))
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                    url = url + "/" + language;
                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
                var surveys = JsonConvert.DeserializeObject<List<Survey>>(responseJsonString);
                if (surveys == null || !surveys.Any())
@ -30,15 +28,15 @@ namespace DamageAssesment.Api.SurveyResponses.Services
            }
        }
-        public async Task<Survey> getSurveyAsync(int surveyId)
+        public async Task<Survey> getSurveyAsync(int surveyId, string token)
        {
            try
            {
                url = urlBase + string.Format(configuration.GetValue<string>("RessourceSettings:SurveyById"), surveyId);
-                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null);
+                var responseJsonString = await httpUtil.SendAsync(HttpMethod.Get, url, null, token);
                var survey = JsonConvert.DeserializeObject<Survey>(responseJsonString);
-                if (survey == null)
+                if (survey == null )
                    return null;
                else return survey;
            }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.Development.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.Development.json
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.Production.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.Production.json
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.Test.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.Test.json
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/appsettings.json
@ -6,6 +6,9 @@
    }
  },
  "AllowedHosts": "*",
  "JwtSettings": {
    "securitykey": "bWlhbWkgZGFkZSBzY2hvb2xzIHNlY3JldCBrZXk="
  },
  //"ConnectionStrings": {
  //  "SurveyResponseConnection": "Server=DESKTOP-OF5DPLQ\\SQLEXPRESS;Database=da_survey_dev;Trusted_Connection=True;TrustServerCertificate=True;"
  //},
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IAnswerServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IAnswerServiceProvider.cs
@ -1,12 +0,0 @@
 using DamageAssesment.Api.SurveyResponses.Models;
 namespace DamageAssesment.Api.SurveyResponses.Interfaces
 {
    public interface IAnswerServiceProvider
    {
        Task<List<Answer>> getAnswersAsync();
        Task<List<Models.Answer>> GetAnswersByResponseIdAsync(int responseId);
        Task<Models.Answer> PostAnswersAsync(Models.Answer answer);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IAttachmentServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IAttachmentServiceProvider.cs
@ -1,10 +0,0 @@
 using DamageAssesment.Api.SurveyResponses.Models;
 namespace DamageAssesment.Api.SurveyResponses.Interfaces
 {
    public interface IAttachmentServiceProvider
    {
        Task<List<Attachment>> getAttachmentsAsync();
        Task<IEnumerable<Attachment>> PostAttachmentsAsync(Models.AttachmentInfo attachmentInfo);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/ILocationServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/ILocationServiceProvider.cs
@ -1,9 +0,0 @@
 using DamageAssesment.Api.SurveyResponses.Models;
 namespace DamageAssesment.Api.SurveyResponses.Interfaces
 {
    public interface ILocationServiceProvider
    {
        Task<List<Location>> getLocationsAsync();
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IQuestionServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IQuestionServiceProvider.cs
@ -1,11 +0,0 @@
 using DamageAssesment.Api.SurveyResponses.Models;
 namespace DamageAssesment.Api.SurveyResponses.Interfaces
 {
    public interface IQuestionServiceProvider
    {
        Task<List<Question>> getQuestionsAsync();
        Task<List<SurveyQuestions>> getSurveyQuestionsAsync(int surveyId);
        Task<Question> getQuestionsAsync(int questionId);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IRegionServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IRegionServiceProvider.cs
@ -1,9 +0,0 @@
 using DamageAssesment.Api.SurveyResponses.Models;
 namespace DamageAssesment.Api.SurveyResponses.Interfaces
 {
    public interface IRegionServiceProvider
    {
        Task<List<Region>> getRegionsAsync();
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/ISurveyServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/ISurveyServiceProvider.cs
@ -1,10 +0,0 @@
 using DamageAssesment.Api.SurveyResponses.Models;
 namespace DamageAssesment.Api.SurveyResponses.Interfaces
 {
    public interface ISurveyServiceProvider
    {
        Task<List<Survey>> getSurveysAsync(string language);
        Task<Survey> getSurveyAsync(int surveyId);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.Surveys/Controllers/SurveysController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Surveys/Controllers/SurveysController.cs
@ -1,4 +1,5 @@
 using DamageAssesment.Api.Surveys.Interfaces;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 namespace DamageAssesment.Api.Surveys.Controllers
@ -15,6 +16,7 @@ namespace DamageAssesment.Api.Surveys.Controllers
        /// <summary>
        /// GET request for retrieving surveys.
        /// </summary>
        [Authorize(Roles ="admin,survey,user,report")]
        [Route("Surveys")]
        [Route("Surveys/{language:alpha}")]
        [HttpGet]
@ -31,6 +33,7 @@ namespace DamageAssesment.Api.Surveys.Controllers
        /// <summary>
        /// GET request for retrieving surveys by ID.
        /// </summary>
        [Authorize(Roles = "admin,survey,user,report")]
        [Route("Surveys/{id:int}")]
        [Route("Surveys/{id:int}/{language:alpha}")]
        [HttpGet]
@ -46,6 +49,7 @@ namespace DamageAssesment.Api.Surveys.Controllers
        /// <summary>
        /// POST request for creating a new survey.
        /// </summary>
        [Authorize(Roles = "admin,survey,user,report")]
        [HttpPost("Surveys")]
        public async Task<ActionResult> PostSurveysAsync(Models.Survey survey)
        {
@ -59,6 +63,8 @@ namespace DamageAssesment.Api.Surveys.Controllers
        /// <summary>
        /// PUT request for updating an existing survey (surveyId,Updated Survey data).
        /// </summary>
        [Authorize(Roles = "admin,survey")]
        [HttpPut("Surveys/{id}")]
        public async Task<ActionResult> PutSurveysAsync(int id, Models.Survey survey)
        {
@ -76,6 +82,7 @@ namespace DamageAssesment.Api.Surveys.Controllers
        /// <summary>
        /// DELETE request for deleting a survey by ID.
        /// </summary>
        [Authorize(Roles = "admin,survey")]
        [HttpDelete("Surveys/{id}")]
        public async Task<ActionResult> DeleteSurveysAsync(int id)
        {
--- a/DamageAssesmentApi/DamageAssesment.Api.Surveys/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.Surveys/Program.cs
@ -6,6 +6,7 @@ using Microsoft.EntityFrameworkCore;
 using Microsoft.IdentityModel.Tokens;
 using System.Text;
 using System.Reflection;
 using Microsoft.OpenApi.Models;
 var builder = WebApplication.CreateBuilder(args);
@ -34,14 +35,44 @@ builder.Services.AddControllers();
 builder.Services.AddScoped<ISurveyProvider, SurveysProvider>();
 builder.Services.AddAutoMapper(AppDomain.CurrentDomain.GetAssemblies());
 builder.Services.AddEndpointsApiExplorer();
-//builder.Services.AddSwaggerGen();
+
-builder.Services.AddSwaggerGen(c =>
+builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
-    c.IncludeXmlComments(xmlPath);
+    options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddDbContext<SurveysDbContext>(option =>
 {
    option.UseSqlServer("SurveyConnection");
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess.Test/DamageAssesment.Api.UsersAccess.Test.csproj
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess.Test/DamageAssesment.Api.UsersAccess.Test.csproj
@ -0,0 +1,30 @@
 <Project Sdk="Microsoft.NET.Sdk">
  <PropertyGroup>
    <TargetFramework>net6.0</TargetFramework>
    <ImplicitUsings>enable</ImplicitUsings>
    <Nullable>enable</Nullable>
    <IsPackable>false</IsPackable>
    <IsTestProject>true</IsTestProject>
  </PropertyGroup>
  <ItemGroup>
    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.3.2" />
    <PackageReference Include="Moq" Version="4.18.4" />
    <PackageReference Include="xunit" Version="2.4.2" />
    <PackageReference Include="xunit.runner.visualstudio" Version="2.4.5">
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
      <PrivateAssets>all</PrivateAssets>
    </PackageReference>
    <PackageReference Include="coverlet.collector" Version="3.1.2">
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
      <PrivateAssets>all</PrivateAssets>
    </PackageReference>
  </ItemGroup>
  <ItemGroup>
    <ProjectReference Include="..\DamageAssesment.Api.UsersAccess\DamageAssesment.Api.UsersAccess.csproj" />
  </ItemGroup>
 </Project>
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess.Test/MockData.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess.Test/MockData.cs
@ -0,0 +1,44 @@
 using DamageAssesment.Api.UsersAccess.Models;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Text;
 using System.Threading.Tasks;
 using Xunit.Sdk;
 namespace DamageAssesment.Api.UsersAccess.Test
 {
    public class MockData
    {
        public static async Task<(bool, Models.TokenResponse, string)> getTokenResponse(bool status, string message)
        {
            return (status, new Models.TokenResponse { jwttoken = "1234", refreshtoken = "12345" }, message);
        }
        public static async Task<(bool, List<User>, string)> getUsers(bool status, string message)
        {
            List<User> users = new List<User>();
            users.Add(new User { Id = 1, EmployeeCode = "Emp1", EmployeeId = 1, RoleId = 1, IsActive = true, CreateDate = DateTime.Now });
            users.Add(new User { Id = 2, EmployeeCode = "Emp2", EmployeeId = 2, RoleId = 1, IsActive = true, CreateDate = DateTime.Now });
            users.Add(new User { Id = 3, EmployeeCode = "Emp3", EmployeeId = 3, RoleId = 1, IsActive = true, CreateDate = DateTime.Now });
            return (status, users, message);
        }
        public static async Task<(bool, User, string)> getUser(bool status, string message)
        {
            User user = getUsers(status, message).Result.Item2.FirstOrDefault();
            return (status, user, message);
        }
        public static async Task<(bool, List<Role>, string)> getRoles(bool status, string message)
        {
            List<Role> roles = new List<Role>();
            roles.Add(new Role { Id = 1, Name = "Role 1" });
            roles.Add(new Role { Id = 2, Name = "Role 2" });
            roles.Add(new Role { Id = 3, Name = "Role 3" });
            return (status, roles, message);
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess.Test/UsersAccessTest.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess.Test/UsersAccessTest.cs
@ -0,0 +1,194 @@
 using DamageAssesment.Api.UsersAccess.Controllers;
 using DamageAssesment.Api.UsersAccess.Interfaces;
 using Microsoft.AspNetCore.Mvc;
 using Moq;
 using Xunit;
 namespace DamageAssesment.Api.UsersAccess.Test
 {
    public class UsersAccessTest
    {
        private Mock<IUsersAccessProvider> mockService;
        public UsersAccessTest()
        {
            mockService = new Mock<IUsersAccessProvider>();
        }
        [Fact(DisplayName = "Get Token - Ok case")]
        public async Task GetTokenAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getTokenResponse(true,null);
            mockService.Setup(service => service.AuthenticateAsync("Emp1")).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.AuthenticateAsync("Emp1");
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "Get Token - Unauthorized case")]
        public async Task GetTokenAsync_ShouldReturnStatusCode401()
        {
            var response = await MockData.getTokenResponse(false, null);
            mockService.Setup(service => service.AuthenticateAsync("Emp1")).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (UnauthorizedObjectResult)await controller.AuthenticateAsync("Emp1");
            Assert.Equal(401, result.StatusCode);
        }
        [Fact(DisplayName = "RefreshToken - Ok case")]
        public async Task RefreshTokenAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getTokenResponse(true, null);
            mockService.Setup(service => service.RefreshTokenAsync(null)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.RefreshTokenAsync(null);
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "RefreshToken - Unauthorized case")]
        public async Task RefreshTokenAsync_ShouldReturnStatusCode401()
        {
            var response = await MockData.getTokenResponse(false, null);
            mockService.Setup(service => service.RefreshTokenAsync(null)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (UnauthorizedObjectResult)await controller.RefreshTokenAsync(null);
            Assert.Equal(401, result.StatusCode);
        }
        [Fact(DisplayName = "GetUsers - Ok case")]
        public async Task GetUsersAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getUsers(true, null);
            mockService.Setup(service => service.GetUsersAsync()).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.GetUsersAsync();
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "GetUsers - NoContent case")]
        public async Task GetUsersAsync_ShouldReturnStatusCode204()
        {
            var response = await MockData.getUsers(false, null);
            mockService.Setup(service => service.GetUsersAsync()).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (NoContentResult)await controller.GetUsersAsync();
            Assert.Equal(204, result.StatusCode);
        }
        [Fact(DisplayName = "GetUser - Ok case")]
        public async Task GetUserAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getUser(true, null);
            mockService.Setup(service => service.GetUsersAsync(1)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.GetUsersAsync(1);
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "GetUser - NotFound case")]
        public async Task GetUserAsync_ShouldReturnStatusCode204()
        {
            var response = await MockData.getUser(false, null);
            mockService.Setup(service => service.GetUsersAsync(1)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (NotFoundResult)await controller.GetUsersAsync(1);
            Assert.Equal(404, result.StatusCode);
        }
        [Fact(DisplayName = "GetRoles - Ok case")]
        public async Task GetRolesAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getRoles(true, null);
            mockService.Setup(service => service.GetRolesAsync()).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.GetRolesAsync();
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "GetRoles - NoContent case")]
        public async Task GetRolesAsync_ShouldReturnStatusCode204()
        {
            var response = await MockData.getRoles(false, null);
            mockService.Setup(service => service.GetRolesAsync()).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (NoContentResult)await controller.GetRolesAsync();
            Assert.Equal(204, result.StatusCode);
        }
        [Fact(DisplayName = "PostUser - Ok case")]
        public async Task PostUserAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getUser(true, null);
            var user = new Models.User { Id = 1, EmployeeCode = "Emp1", EmployeeId = 1, RoleId = 1, IsActive = true, CreateDate = DateTime.Now };
            mockService.Setup(service => service.PostUserAsync(user)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.PostUserAsync(user);
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "PostUser - Bad Request case")]
        public async Task PostUserAsync_ShouldReturnStatusCode400()
        {
            var response = await MockData.getUser(false, null);
            var user = new Models.User { Id = 1, EmployeeCode = "Emp1", EmployeeId = 1, RoleId = 1, IsActive = true, CreateDate = DateTime.Now };
            mockService.Setup(service => service.PostUserAsync(user)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (BadRequestObjectResult)await controller.PostUserAsync(user);
            Assert.Equal(400, result.StatusCode);
        }
        [Fact(DisplayName = "PutUser - Ok case")]
        public async Task PutUserAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getUser(true, null);
            var user = new Models.User { Id = 1, EmployeeCode = "Emp1", EmployeeId = 1, RoleId = 1, IsActive = true, CreateDate = DateTime.Now };
            mockService.Setup(service => service.PutUserAsync(1,user)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.PutUserAsync(1,user);
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "PutUser - BadRequest case")]
        public async Task PutUserAsync_ShouldReturnStatusCode400()
        {
            var response = await MockData.getUser(false, null);
            var user = new Models.User { Id = 1, EmployeeCode = "Emp1", EmployeeId = 1, RoleId = 1, IsActive = true, CreateDate = DateTime.Now };
            mockService.Setup(service => service.PutUserAsync(1,user)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (BadRequestObjectResult)await controller.PutUserAsync(1,user);
            Assert.Equal(400, result.StatusCode);
        }
        [Fact(DisplayName = "PutUser - Not Found case")]
        public async Task PutUserAsync_ShouldReturnStatusCode404()
        {
            var response = await MockData.getUser(false, "Not Found");
            var user = new Models.User { Id = 1, EmployeeCode = "Emp1", EmployeeId = 1, RoleId = 1, IsActive = true, CreateDate = DateTime.Now };
            mockService.Setup(service => service.PutUserAsync(1, user)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (NotFoundObjectResult)await controller.PutUserAsync(1,user);
            Assert.Equal(404, result.StatusCode);
        }
        [Fact(DisplayName = "DeleteUser - Ok case")]
        public async Task DeleteUserAsync_ShouldReturnStatusCode200()
        {
            var response = await MockData.getUser(true, null);
                    mockService.Setup(service => service.DeleteUserAsync(1)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (OkObjectResult)await controller.DeleteUserAsync(1);
            Assert.Equal(200, result.StatusCode);
        }
        [Fact(DisplayName = "DeleteUser - Not Found case")]
        public async Task DeleteUserAsync_ShouldReturnStatusCode404()
        {
            var response = await MockData.getUser(false, "Not Found");
            mockService.Setup(service => service.DeleteUserAsync(1)).ReturnsAsync(response);
            var controller = new UsersAccessController(mockService.Object);
            var result = (NotFoundResult)await controller.DeleteUserAsync(1);
            Assert.Equal(404, result.StatusCode);
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Controllers/UsersAccessController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Controllers/UsersAccessController.cs
@ -0,0 +1,117 @@
 using DamageAssesment.Api.UsersAccess.Interfaces;
 using DamageAssesment.Api.UsersAccess.Models;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 namespace DamageAssesment.Api.UsersAccess.Controllers
 {
    [ApiController]
    public class UsersAccessController : ControllerBase
    {
        private IUsersAccessProvider userAccessProvider;
        public UsersAccessController(IUsersAccessProvider userAccessProvider)
        {
            this.userAccessProvider = userAccessProvider;
        }
        [Authorize(Policy = "Dadeschools")]
        [HttpPost("token/{employecode}")]
        public async Task<ActionResult> AuthenticateAsync(string employecode)
        {
              var result = await userAccessProvider.AuthenticateAsync(employecode);
              if (result.IsSuccess)
              {
                  return Ok(result.TokenResponse);
              }
              return Unauthorized(result.ErrorMessage);
        }
        [Authorize(Policy = "Dadeschools")]
        [HttpPost("refreshtoken")]
        public async Task<ActionResult> RefreshTokenAsync(TokenResponse tokenResponse)
        {
            var result = await userAccessProvider.RefreshTokenAsync(tokenResponse);
            if (result.IsSuccess)
            {
                return Ok(result.TokenResponse);
            }
            return Unauthorized(result.ErrorMessage);
        }
        [Authorize(Policy = "DamageApp", Roles ="admin")]
        [HttpGet("users")]
        public async Task<ActionResult> GetUsersAsync()
        {
            var result = await userAccessProvider.GetUsersAsync();
            if (result.IsSuccess)
            {
                return Ok(result.Users);
            }
            return NoContent();
        }
        [Authorize(Policy = "DamageApp", Roles = "admin")]
        [HttpGet("users/{Id}")]
        public async Task<ActionResult> GetUsersAsync(int Id)
        {
            var result = await userAccessProvider.GetUsersAsync(Id);
            if (result.IsSuccess)
            {
                return Ok(result.User);
            }
            return NotFound();
        }
        [Authorize(Policy = "DamageApp", Roles = "admin")]
        [HttpGet("roles")]
        public async Task<ActionResult> GetRolesAsync()
        {
            var result = await userAccessProvider.GetRolesAsync();
            if (result.IsSuccess)
            {
                return Ok(result.Roles);
            }
            return NoContent();
        }
        [Authorize(Policy = "DamageApp", Roles = "admin")]
        [HttpPost("users")]
        public async Task<ActionResult> PostUserAsync(User user)
        {
            var result = await userAccessProvider.PostUserAsync(user);
            if (result.IsSuccess)
            {
                return Ok(result.User);
            }
            return BadRequest(result.ErrorMessage);
        }
        [Authorize(Policy = "DamageApp", Roles = "admin")]
        [HttpPut("users/{Id}")]
        public async Task<ActionResult> PutUserAsync(int Id, User user)
        {
            var result = await userAccessProvider.PutUserAsync(Id, user);
            if (result.IsSuccess)
            {
                return Ok(result.User);
            }
            if (result.ErrorMessage == "Not Found")
                return NotFound(result.ErrorMessage);
            return BadRequest(result.ErrorMessage);
        }
        [Authorize(Policy = "DamageApp", Roles = "admin")]
        [HttpDelete("users/{Id}")]
        public async Task<ActionResult> DeleteUserAsync(int Id)
        {
            var result = await userAccessProvider.DeleteUserAsync(Id);
            if (result.IsSuccess)
            {
                return Ok(result.User);
            }
            return NotFound();
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/DamageAssesment.Api.UsersAccess.csproj
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/DamageAssesment.Api.UsersAccess.csproj
@ -0,0 +1,29 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
  <PropertyGroup>
    <TargetFramework>net6.0</TargetFramework>
    <Nullable>enable</Nullable>
    <ImplicitUsings>enable</ImplicitUsings>
  </PropertyGroup>
  <ItemGroup>
    <PackageReference Include="AutoMapper.Extensions.Microsoft.DependencyInjection" Version="12.0.1" />
    <PackageReference Include="IdentityServer4.AccessTokenValidation" Version="3.0.1" />
    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="6.0.21" />
    <PackageReference Include="Microsoft.EntityFrameworkCore" Version="7.0.9" />
    <PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="7.0.9">
      <PrivateAssets>all</PrivateAssets>
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
    </PackageReference>
    <PackageReference Include="Microsoft.EntityFrameworkCore.InMemory" Version="7.0.9" />
    <PackageReference Include="Microsoft.EntityFrameworkCore.SqlServer" Version="7.0.9" />
    <PackageReference Include="Microsoft.EntityFrameworkCore.Tools" Version="7.0.9">
      <PrivateAssets>all</PrivateAssets>
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
    </PackageReference>
    <PackageReference Include="Microsoft.Extensions.Http.Polly" Version="7.0.10" />
    <PackageReference Include="Newtonsoft.Json" Version="13.0.3" />
    <PackageReference Include="Swashbuckle.AspNetCore" Version="6.2.3" />
  </ItemGroup>
 </Project>
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/Role.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/Role.cs
@ -0,0 +1,21 @@
 using System.ComponentModel.DataAnnotations;
 using System.ComponentModel.DataAnnotations.Schema;
 using System.Text.Json.Serialization;
 namespace DamageAssesment.Api.UsersAccess.Db
 {
    public class Role
    {
        [Key]
        public int Id { get; set; }
        [StringLength(100)]
        [Required]
        public string Name { get; set; }
        // add a status field
        [StringLength(100)]
        public string? Description { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/Token.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/Token.cs
@ -0,0 +1,17 @@
 using Microsoft.EntityFrameworkCore.Metadata.Internal;
 using System.ComponentModel.DataAnnotations;
 using System.ComponentModel.DataAnnotations.Schema;
 namespace DamageAssesment.Api.UsersAccess.Db
 {
    public  class Token
    {
        [Key]
        public int Id { get; set; }
        [Required]
        [ForeignKey("User")]
        public int UserId { get; set; }
        public string? RefreshToken { get; set; }
        public bool? IsActive { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/User.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/User.cs
@ -0,0 +1,31 @@
 using System.ComponentModel.DataAnnotations;
 using System.ComponentModel.DataAnnotations.Schema;
 using System.Text.Json.Serialization;
 namespace DamageAssesment.Api.UsersAccess.Db
 {
    public class User
    {
        [Key]
        public int Id { get; set; }
        [ForeignKey("Employee")]
        public int EmployeeId { get; set; }
        [Required]
        [StringLength(50)]
        public string EmployeeCode { get; set; }
        [ForeignKey("Role")]
        [Required]
        public int RoleId { get; set; }
        [Required]
        public bool IsActive { get; set; } = true;
        [Required]
        public DateTime CreateDate { get; set; } = DateTime.Now;
        public DateTime? UpdateDate { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/UsersAccessDbContext.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Db/UsersAccessDbContext.cs
@ -0,0 +1,39 @@
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Extensions.Configuration;
 namespace DamageAssesment.Api.UsersAccess.Db
 {
    public class UsersAccessDbContext : DbContext
    {
        public DbSet<Db.User> Users { get; set; }
        public DbSet<Db.Role> Roles { get; set; }
        public DbSet<Db.Token> Tokens { get; set; }
        private IConfiguration _Configuration { get; set; }
        public UsersAccessDbContext(DbContextOptions options, IConfiguration configuration) : base(options)
        {
            _Configuration = configuration;
        }
        protected override void OnConfiguring(DbContextOptionsBuilder options)
        {
            // connect to sql server with connection string from app settings
            options.UseSqlServer(_Configuration.GetConnectionString("UsersAccessConnection"));
        }
        protected override void OnModelCreating(ModelBuilder modelBuilder)
        {
            base.OnModelCreating(modelBuilder);
            modelBuilder.Entity<User>()
                .Property(item => item.Id)
                .ValueGeneratedOnAdd();
            modelBuilder.Entity<Role>()
            .Property(item => item.Id)
            .ValueGeneratedOnAdd();
            modelBuilder.Entity<Token>()
            .Property(item => item.Id)
            .ValueGeneratedOnAdd();
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IEmployeeServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IEmployeeServiceProvider.cs
@ -1,6 +1,6 @@
-using DamageAssesment.Api.SurveyResponses.Models;
+using DamageAssesment.Api.UsersAccess.Models;
-namespace DamageAssesment.Api.SurveyResponses.Interfaces
+namespace DamageAssesment.Api.UsersAccess.Interfaces
 {
    public interface IEmployeeServiceProvider
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IHttpUtil.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.SurveyResponses/Interfaces/IHttpUtil.cs
@ -1,6 +1,4 @@
-using DamageAssesment.Api.SurveyResponses.Models;
+namespace DamageAssesment.Api.UsersAccess.Interfaces
 namespace DamageAssesment.Api.SurveyResponses.Interfaces
 {
    public interface IHttpUtil
    {
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Interfaces/IRoleProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Interfaces/IRoleProvider.cs
@ -0,0 +1,12 @@
 namespace DamageAssesment.Api.UsersAccess.Interfaces
 {
    public interface IRoleProvider
    {
       Task<(bool IsSuccess, IEnumerable< Models.Role> Roles, string ErrorMessage)> GetRolesAsync();
       Task<(bool IsSuccess, Models.Role Roles, string ErrorMessage)> GetRolesAsync(int Id);
       Task<(bool IsSuccess, Models.Role Role, string ErrorMessage)> PostRoleAsync(Models.Role Role);
       Task<(bool IsSuccess, Models.Role Role, string ErrorMessage)> PutRoleAsync(int Id,Models.Role Role);
       Task<(bool IsSuccess, Models.Role Role, string ErrorMessage)> DeleteRoleAsync(int Id);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Interfaces/ITokenServiceProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Interfaces/ITokenServiceProvider.cs
@ -0,0 +1,11 @@
 using DamageAssesment.Api.UsersAccess.Models;
 using System.Security.Claims;
 namespace DamageAssesment.Api.UsersAccess.Interfaces
 {
    public interface ITokenServiceProvider
    {
        Task<string> GenerateToken(Models.User user);
        Task<TokenResponse> TokenAuthenticate(Models.User user, Claim[] claims);
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Interfaces/IUsersAccessProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Interfaces/IUsersAccessProvider.cs
@ -0,0 +1,17 @@
 using DamageAssesment.Api.UsersAccess.Models;
 namespace DamageAssesment.Api.UsersAccess.Interfaces
 {
    public interface IUsersAccessProvider
    {
       public Task<(bool IsSuccess, IEnumerable< Models.User> Users, string ErrorMessage)> GetUsersAsync();
        public Task<(bool IsSuccess, Models.User User, string ErrorMessage)> GetUsersAsync(int Id);
        public Task<(bool IsSuccess, Models.User User, string ErrorMessage)> PostUserAsync(Models.User User);
        public Task<(bool IsSuccess, Models.User User, string ErrorMessage)> PutUserAsync(int Id,Models.User User);
        public Task<(bool IsSuccess, Models.User User, string ErrorMessage)> DeleteUserAsync(int Id);
        public Task<(bool IsSuccess, IEnumerable<Models.Role> Roles, string ErrorMessage)> GetRolesAsync();
        public  Task<(bool IsSuccess, Models.TokenResponse TokenResponse, string ErrorMessage)> AuthenticateAsync(string employeCode);
        public Task<(bool IsSuccess, Models.TokenResponse TokenResponse, string ErrorMessage)>RefreshTokenAsync(TokenResponse tokenResponse);
        public void seedData();
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Migrations/20230929161148_AzureUserAccess.Designer.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Migrations/20230929161148_AzureUserAccess.Designer.cs
@ -0,0 +1,107 @@
 // <auto-generated />
 using System;
 using DamageAssesment.Api.UsersAccess.Db;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.EntityFrameworkCore.Infrastructure;
 using Microsoft.EntityFrameworkCore.Metadata;
 using Microsoft.EntityFrameworkCore.Migrations;
 using Microsoft.EntityFrameworkCore.Storage.ValueConversion;
 #nullable disable
 namespace DamageAssesment.Api.UsersAccess.Migrations
 {
    [DbContext(typeof(UsersAccessDbContext))]
    [Migration("20230929161148_AzureUserAccess")]
    partial class AzureUserAccess
    {
        /// <inheritdoc />
        protected override void BuildTargetModel(ModelBuilder modelBuilder)
        {
 #pragma warning disable 612, 618
            modelBuilder
                .HasAnnotation("ProductVersion", "7.0.9")
                .HasAnnotation("Relational:MaxIdentifierLength", 128);
            SqlServerModelBuilderExtensions.UseIdentityColumns(modelBuilder);
            modelBuilder.Entity("DamageAssesment.Api.UsersAccess.Db.Role", b =>
                {
                    b.Property<int>("Id")
                        .ValueGeneratedOnAdd()
                        .HasColumnType("int");
                    SqlServerPropertyBuilderExtensions.UseIdentityColumn(b.Property<int>("Id"));
                    b.Property<string>("Description")
                        .HasMaxLength(100)
                        .HasColumnType("nvarchar(100)");
                    b.Property<string>("Name")
                        .IsRequired()
                        .HasMaxLength(100)
                        .HasColumnType("nvarchar(100)");
                    b.HasKey("Id");
                    b.ToTable("Roles");
                });
            modelBuilder.Entity("DamageAssesment.Api.UsersAccess.Db.Token", b =>
                {
                    b.Property<int>("Id")
                        .ValueGeneratedOnAdd()
                        .HasColumnType("int");
                    SqlServerPropertyBuilderExtensions.UseIdentityColumn(b.Property<int>("Id"));
                    b.Property<bool?>("IsActive")
                        .HasColumnType("bit");
                    b.Property<string>("RefreshToken")
                        .HasColumnType("nvarchar(max)");
                    b.Property<int>("UserId")
                        .HasColumnType("int");
                    b.HasKey("Id");
                    b.ToTable("Tokens");
                });
            modelBuilder.Entity("DamageAssesment.Api.UsersAccess.Db.User", b =>
                {
                    b.Property<int>("Id")
                        .ValueGeneratedOnAdd()
                        .HasColumnType("int");
                    SqlServerPropertyBuilderExtensions.UseIdentityColumn(b.Property<int>("Id"));
                    b.Property<DateTime>("CreateDate")
                        .HasColumnType("datetime2");
                    b.Property<string>("EmployeeCode")
                        .IsRequired()
                        .HasMaxLength(50)
                        .HasColumnType("nvarchar(50)");
                    b.Property<int>("EmployeeId")
                        .HasColumnType("int");
                    b.Property<bool>("IsActive")
                        .HasColumnType("bit");
                    b.Property<int>("RoleId")
                        .HasColumnType("int");
                    b.Property<DateTime?>("UpdateDate")
                        .HasColumnType("datetime2");
                    b.HasKey("Id");
                    b.ToTable("Users");
                });
 #pragma warning restore 612, 618
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Migrations/20230929161148_AzureUserAccess.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Migrations/20230929161148_AzureUserAccess.cs
@ -0,0 +1,75 @@
 using System;
 using Microsoft.EntityFrameworkCore.Migrations;
 #nullable disable
 namespace DamageAssesment.Api.UsersAccess.Migrations
 {
    /// <inheritdoc />
    public partial class AzureUserAccess : Migration
    {
        /// <inheritdoc />
        protected override void Up(MigrationBuilder migrationBuilder)
        {
            migrationBuilder.CreateTable(
                name: "Roles",
                columns: table => new
                {
                    Id = table.Column<int>(type: "int", nullable: false)
                        .Annotation("SqlServer:Identity", "1, 1"),
                    Name = table.Column<string>(type: "nvarchar(100)", maxLength: 100, nullable: false),
                    Description = table.Column<string>(type: "nvarchar(100)", maxLength: 100, nullable: true)
                },
                constraints: table =>
                {
                    table.PrimaryKey("PK_Roles", x => x.Id);
                });
            migrationBuilder.CreateTable(
                name: "Tokens",
                columns: table => new
                {
                    Id = table.Column<int>(type: "int", nullable: false)
                        .Annotation("SqlServer:Identity", "1, 1"),
                    UserId = table.Column<int>(type: "int", nullable: false),
                    RefreshToken = table.Column<string>(type: "nvarchar(max)", nullable: true),
                    IsActive = table.Column<bool>(type: "bit", nullable: true)
                },
                constraints: table =>
                {
                    table.PrimaryKey("PK_Tokens", x => x.Id);
                });
            migrationBuilder.CreateTable(
                name: "Users",
                columns: table => new
                {
                    Id = table.Column<int>(type: "int", nullable: false)
                        .Annotation("SqlServer:Identity", "1, 1"),
                    EmployeeId = table.Column<int>(type: "int", nullable: false),
                    EmployeeCode = table.Column<string>(type: "nvarchar(50)", maxLength: 50, nullable: false),
                    RoleId = table.Column<int>(type: "int", nullable: false),
                    IsActive = table.Column<bool>(type: "bit", nullable: false),
                    CreateDate = table.Column<DateTime>(type: "datetime2", nullable: false),
                    UpdateDate = table.Column<DateTime>(type: "datetime2", nullable: true)
                },
                constraints: table =>
                {
                    table.PrimaryKey("PK_Users", x => x.Id);
                });
        }
        /// <inheritdoc />
        protected override void Down(MigrationBuilder migrationBuilder)
        {
            migrationBuilder.DropTable(
                name: "Roles");
            migrationBuilder.DropTable(
                name: "Tokens");
            migrationBuilder.DropTable(
                name: "Users");
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Migrations/UsersAccessDbContextModelSnapshot.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Migrations/UsersAccessDbContextModelSnapshot.cs
@ -0,0 +1,104 @@
 // <auto-generated />
 using System;
 using DamageAssesment.Api.UsersAccess.Db;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.EntityFrameworkCore.Infrastructure;
 using Microsoft.EntityFrameworkCore.Metadata;
 using Microsoft.EntityFrameworkCore.Storage.ValueConversion;
 #nullable disable
 namespace DamageAssesment.Api.UsersAccess.Migrations
 {
    [DbContext(typeof(UsersAccessDbContext))]
    partial class UsersAccessDbContextModelSnapshot : ModelSnapshot
    {
        protected override void BuildModel(ModelBuilder modelBuilder)
        {
 #pragma warning disable 612, 618
            modelBuilder
                .HasAnnotation("ProductVersion", "7.0.9")
                .HasAnnotation("Relational:MaxIdentifierLength", 128);
            SqlServerModelBuilderExtensions.UseIdentityColumns(modelBuilder);
            modelBuilder.Entity("DamageAssesment.Api.UsersAccess.Db.Role", b =>
                {
                    b.Property<int>("Id")
                        .ValueGeneratedOnAdd()
                        .HasColumnType("int");
                    SqlServerPropertyBuilderExtensions.UseIdentityColumn(b.Property<int>("Id"));
                    b.Property<string>("Description")
                        .HasMaxLength(100)
                        .HasColumnType("nvarchar(100)");
                    b.Property<string>("Name")
                        .IsRequired()
                        .HasMaxLength(100)
                        .HasColumnType("nvarchar(100)");
                    b.HasKey("Id");
                    b.ToTable("Roles");
                });
            modelBuilder.Entity("DamageAssesment.Api.UsersAccess.Db.Token", b =>
                {
                    b.Property<int>("Id")
                        .ValueGeneratedOnAdd()
                        .HasColumnType("int");
                    SqlServerPropertyBuilderExtensions.UseIdentityColumn(b.Property<int>("Id"));
                    b.Property<bool?>("IsActive")
                        .HasColumnType("bit");
                    b.Property<string>("RefreshToken")
                        .HasColumnType("nvarchar(max)");
                    b.Property<int>("UserId")
                        .HasColumnType("int");
                    b.HasKey("Id");
                    b.ToTable("Tokens");
                });
            modelBuilder.Entity("DamageAssesment.Api.UsersAccess.Db.User", b =>
                {
                    b.Property<int>("Id")
                        .ValueGeneratedOnAdd()
                        .HasColumnType("int");
                    SqlServerPropertyBuilderExtensions.UseIdentityColumn(b.Property<int>("Id"));
                    b.Property<DateTime>("CreateDate")
                        .HasColumnType("datetime2");
                    b.Property<string>("EmployeeCode")
                        .IsRequired()
                        .HasMaxLength(50)
                        .HasColumnType("nvarchar(50)");
                    b.Property<int>("EmployeeId")
                        .HasColumnType("int");
                    b.Property<bool>("IsActive")
                        .HasColumnType("bit");
                    b.Property<int>("RoleId")
                        .HasColumnType("int");
                    b.Property<DateTime?>("UpdateDate")
                        .HasColumnType("datetime2");
                    b.HasKey("Id");
                    b.ToTable("Users");
                });
 #pragma warning restore 612, 618
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/Employee.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/Employee.cs
@ -0,0 +1,14 @@
 namespace DamageAssesment.Api.UsersAccess.Models
 {
    public class Employee
    {
        public int Id { get; set; }
        public string EmployeeCode { get; set; }
        public string Name { get; set; }
        public DateTime BirthDate { get; set; }
        public string OfficePhoneNumber { get; set; }
        public string Email { get; set; }
        public bool IsActive { get; set; }
        public string PreferredLanguage { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/JwtSettings.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/JwtSettings.cs
@ -0,0 +1,9 @@
 using System.ComponentModel.DataAnnotations;
 namespace DamageAssesment.Api.UsersAccess.Models
 {
    public class JwtSettings
    {
        public string securitykey { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/Role.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/Role.cs
@ -0,0 +1,8 @@
 namespace DamageAssesment.Api.UsersAccess.Models
 {
    public class Role { 
        public int Id { get; set; }
        public string Name { get; set; }
        public string Description { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/Token.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/Token.cs
@ -0,0 +1,10 @@
 namespace DamageAssesment.Api.UsersAccess.Models
 {
    public  class Token
    { 
        public string Id { get; set; }
        public int UserId { get; set; } 
        public string RefreshToken { get; set; }
        public bool IsActive { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/TokenResponse.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/TokenResponse.cs
@ -0,0 +1,8 @@
 namespace DamageAssesment.Api.UsersAccess.Models
 {
    public class TokenResponse
    {
        public string? jwttoken { get; set; }
        public string? refreshtoken { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/User.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/User.cs
@ -0,0 +1,13 @@
 namespace DamageAssesment.Api.UsersAccess.Models
 {
    public class User
    {
        public int Id { get; set; }
        public int EmployeeId { get; set; }
        public string EmployeeCode { get; set; }
        public int RoleId { get; set; }
        public bool IsActive { get; set; }
        public DateTime CreateDate { get; set; }
        public DateTime UpdateDate { get; set; }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/UserCredentials.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Models/UserCredentials.cs
@ -0,0 +1,5 @@
 public class UserCredentials
 {
    public string username { get; set; }
   // public string? password { get; set; }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Profiles/UsersAccessProfile.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Profiles/UsersAccessProfile.cs
@ -0,0 +1,14 @@
 namespace DamageAssesment.Api.UsersAccess.Profiles
 {
    public class UsersAccessProfile : AutoMapper.Profile
    {
        public UsersAccessProfile()
        {
            CreateMap<Db.User, Models.User>();
            CreateMap<Models.User, Db.User>();
            CreateMap<Db.Role, Models.Role>();
            CreateMap<Models.Role, Db.Role>();
        }
    }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Program.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Program.cs
@ -0,0 +1,146 @@
 using DamageAssesment.Api.UsersAccess.Db;
 using DamageAssesment.Api.UsersAccess.Interfaces;
 using DamageAssesment.Api.UsersAccess.Providers;
 using DamageAssesment.Api.UsersAccess.Models;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.IdentityModel.Tokens;
 using System.Text;
 using Polly;
 using DamageAssesment.Api.UsersAccess.Services;
 using Microsoft.OpenApi.Models;
 using System.Reflection;
 using Microsoft.AspNetCore.Authorization;
 const int maxApiCallRetries = 3;
 const int intervalToRetry = 2; //2 seconds
 const int maxRetryForCircuitBraker = 5;
 const int intervalForCircuitBraker = 5; //5 seconds
 var builder = WebApplication.CreateBuilder(args);
 // Add services to the container.
 var authkey = builder.Configuration.GetValue<string>("JwtSettings:securitykey");
 builder.Services.AddAuthentication().
    AddJwtBearer("DamageApp", item =>
 {
    item.RequireHttpsMetadata = true;
    item.SaveToken = true;
    item.TokenValidationParameters = new TokenValidationParameters()
    {
        ValidateIssuerSigningKey = true,
        IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authkey)),
        ValidateIssuer = false,
        ValidateAudience = false,
        ClockSkew = TimeSpan.Zero
    };
 }).AddJwtBearer("Dadeschools", options =>
 {
    options.Authority = builder.Configuration["Dadeschools:Authority"];
    options.TokenValidationParameters.ValidTypes = new[] { "at+jwt" };
    options.TokenValidationParameters.ValidateAudience = false;
 });
 builder.Services.AddAuthorization(options =>
 {
    var DamageAppPolicy = new AuthorizationPolicyBuilder()
        .RequireAuthenticatedUser()
        .AddAuthenticationSchemes("DamageApp")
        .Build();
    var DadeschoolsPolicy = new AuthorizationPolicyBuilder()
        .RequireAuthenticatedUser()
        .AddAuthenticationSchemes("Dadeschools")
        .Build();
    var allPolicy = new AuthorizationPolicyBuilder()
        .RequireAuthenticatedUser()
        .AddAuthenticationSchemes("DamageApp", "Dadeschools")
        .Build();
    options.AddPolicy("DamageApp", DamageAppPolicy);
    options.AddPolicy("Dadeschools", DadeschoolsPolicy);
    options.AddPolicy("AllPolicies", allPolicy);
    options.DefaultPolicy = options.GetPolicy("DamageApp")!;
 });
 var _jwtsettings = builder.Configuration.GetSection("JwtSettings");
 builder.Services.Configure<JwtSettings>(_jwtsettings);
 builder.Services.AddControllers();
 // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
 builder.Services.AddScoped<IUsersAccessProvider, UsersAccessProvider>();
 builder.Services.AddScoped<ITokenServiceProvider, TokenServiceProvider>();
 builder.Services.AddScoped<IEmployeeServiceProvider, EmployeeServiceProvider>();
 builder.Services.AddHttpClient<IHttpUtil, HttpUtil>().
    AddTransientHttpErrorPolicy(policy => policy.WaitAndRetryAsync(maxApiCallRetries, _ => TimeSpan.FromSeconds(intervalToRetry))).
    AddTransientHttpErrorPolicy(policy => policy.CircuitBreakerAsync(maxRetryForCircuitBraker, TimeSpan.FromSeconds(intervalForCircuitBraker)));
 builder.Services.AddAutoMapper(AppDomain.CurrentDomain.GetAssemblies());
 builder.Services.AddEndpointsApiExplorer();
 //builder.Services.AddSwaggerGen();
 builder.Services.AddSwaggerGen(options =>
 {
    // Include XML comments from your assembly
    var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
    var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
    //options.IncludeXmlComments(xmlPath);
    OpenApiSecurityScheme securityDefinition = new OpenApiSecurityScheme()
    {
        Name = "Bearer",
        BearerFormat = "JWT",
        Scheme = "bearer",
        Description = "Specify the authorization token.",
        In = ParameterLocation.Header,
        Type = SecuritySchemeType.Http,
    };
    options.AddSecurityDefinition("jwt_auth", securityDefinition);
    // Make sure swagger UI requires a Bearer token specified
    OpenApiSecurityScheme securityScheme = new OpenApiSecurityScheme()
    {
        Reference = new OpenApiReference()
        {
            Id = "jwt_auth",
            Type = ReferenceType.SecurityScheme
        }
    };
    OpenApiSecurityRequirement securityRequirements = new OpenApiSecurityRequirement()
    {
        {securityScheme, new string[] { }},
    };
    options.AddSecurityRequirement(securityRequirements);
 });
 builder.Services.AddDbContext<UsersAccessDbContext>(option =>
 {
    option.UseSqlServer("UsersAccessConnection");
 });
 var app = builder.Build();
 // Configure the HTTP request pipeline.
 if (app.Environment.IsDevelopment())
 {
    app.UseSwagger();
    app.UseSwaggerUI();
    using (var serviceScope = app.Services.CreateScope())
    {
        var services = serviceScope.ServiceProvider;
        var usersAccessProvider = services.GetRequiredService<IUsersAccessProvider>();
        usersAccessProvider.seedData();
    }
 }
 app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
 app.Run();
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Properties/launchSettings.json
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Properties/launchSettings.json
@ -0,0 +1,31 @@
 {
  "$schema": "https://json.schemastore.org/launchsettings.json",
  "iisSettings": {
    "windowsAuthentication": false,
    "anonymousAuthentication": true,
    "iisExpress": {
      "applicationUrl": "http://localhost:28382",
      "sslPort": 0
    }
  },
  "profiles": {
    "DamageAssesment.Api.Users": {
      "commandName": "Project",
      "dotnetRunMessages": true,
      "launchBrowser": true,
      "launchUrl": "swagger",
      "applicationUrl": "http://localhost:5027",
      "environmentVariables": {
        "ASPNETCORE_ENVIRONMENT": "Development"
      }
    },
    "IIS Express": {
      "commandName": "IISExpress",
      "launchBrowser": true,
      "launchUrl": "swagger",
      "environmentVariables": {
        "ASPNETCORE_ENVIRONMENT": "Development"
      }
    }
  }
 }
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Providers/UserAccessProvider.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Providers/UserAccessProvider.cs
@ -0,0 +1,305 @@
 using AutoMapper;
 using DamageAssesment.Api.UsersAccess.Db;
 using DamageAssesment.Api.UsersAccess.Interfaces;
 using DamageAssesment.Api.UsersAccess.Models;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Extensions.Options;
 using Microsoft.IdentityModel.Tokens;
 using System.Data;
 using System.IdentityModel.Tokens.Jwt;
 using System.Security.Claims;
 using System.Text;
 namespace DamageAssesment.Api.UsersAccess.Providers
 {
    public class UsersAccessProvider : IUsersAccessProvider
    {
        private readonly UsersAccessDbContext userAccessDbContext;
        private readonly ILogger<UsersAccessProvider> logger;
        private readonly IMapper mapper;
        //private readonly IEmployeeServiceProvider employeeServiceProvider;
        private readonly JwtSettings jwtSettings;
        private readonly ITokenServiceProvider tokenServiceProvider;
        public UsersAccessProvider(IOptions<JwtSettings> options, ITokenServiceProvider tokenServiceProvider, UsersAccessDbContext userAccessDbContext, IEmployeeServiceProvider employeeServiceProvider, ILogger<UsersAccessProvider> logger, IMapper mapper)
        {
            this.userAccessDbContext = userAccessDbContext;
            //this.employeeServiceProvider = employeeServiceProvider;
            this.logger = logger;
            this.mapper = mapper;
            jwtSettings = options.Value;
            this.tokenServiceProvider = tokenServiceProvider;
           // seedData();
        }
        public void seedData()
        {
            if (!userAccessDbContext.Users.Any())
            {
                userAccessDbContext.Users.Add(new Db.User { Id = 1, EmployeeId = 1, EmployeeCode = "Emp1", RoleId = 1, IsActive = true, CreateDate = DateTime.Now });
                userAccessDbContext.Users.Add(new Db.User { Id = 2, EmployeeId = 2, EmployeeCode = "Emp2", RoleId = 2, IsActive = true, CreateDate = DateTime.Now });
                userAccessDbContext.Users.Add(new Db.User { Id = 3, EmployeeId = 3, EmployeeCode = "Emp3", RoleId = 3, IsActive = true, CreateDate = DateTime.Now });
                userAccessDbContext.SaveChanges();
            }
            if (!userAccessDbContext.Roles.Any())
            {
                userAccessDbContext.Roles.Add(new Db.Role { Id = 1, Name = "admin", Description ="Administrator role have full access" });
                userAccessDbContext.Roles.Add(new Db.Role { Id = 2, Name = "user", Description =" User role"});
                userAccessDbContext.Roles.Add(new Db.Role { Id = 3, Name = "survey", Description ="Survey role" });
                userAccessDbContext.Roles.Add(new Db.Role { Id = 4, Name = "report", Description ="Report role"});
                userAccessDbContext.Roles.Add(new Db.Role { Id = 5, Name = "document", Description ="Document role" });
                userAccessDbContext.SaveChanges();
            }
        }
        public async Task<(bool IsSuccess, IEnumerable<Models.User> Users, string ErrorMessage)> GetUsersAsync()
        {
            try
            {
                logger?.LogInformation("Gell all Users from DB");
                var users = await userAccessDbContext.Users.ToListAsync();
                if (users != null)
                {
                    logger?.LogInformation($"{users.Count} Items(s) found");
                    var result = mapper.Map<IEnumerable<Db.User>, IEnumerable<Models.User>>(users);
                    return (true, result, null);
                }
                return (false, null, "Not found");
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, Models.User User, string ErrorMessage)> GetUsersAsync(int Id)
        {
            try
            {
                logger?.LogInformation("Querying Users table");
                var user = await userAccessDbContext.Users.SingleOrDefaultAsync(s => s.Id == Id);
                if (user != null)
                {
                    logger?.LogInformation($"User Id: {Id} found");
                    var result = mapper.Map<Db.User, Models.User>(user);
                    return (true, result, null);
                }
                return (false, null, "Not found");
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, Models.User User, string ErrorMessage)> PostUserAsync(Models.User user)
        {
            try
            {
                if (user != null)
                {
                    var _user = mapper.Map<Models.User, Db.User>(user);
                    userAccessDbContext.Users.Add(_user);
                    user.Id = _user.Id;
                    await userAccessDbContext.SaveChangesAsync();
                    return (true, user, "Successful");
                }
                else
                {
                    logger?.LogInformation($"null object cannot be added");
                    return (false, null, $"null object cannot be added");
                }
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, Models.User User, string ErrorMessage)> PutUserAsync(int Id, Models.User user)
        {
            try
            {
                if (user != null)
                {
                    var _user = await userAccessDbContext.Users.AsNoTracking().Where(s => s.Id == Id).SingleOrDefaultAsync();
                    if (_user != null)
                    {
                        int count = userAccessDbContext.Users.Where(u => u.Id != user.Id).Count();
                        if (count == 0)
                        {
                            await userAccessDbContext.SaveChangesAsync();
                            logger?.LogInformation($"Employee Id:  {user.EmployeeId} updated successfuly");
                            return (true, mapper.Map<Db.User, Models.User>(_user), $"Employee Id:  {_user.EmployeeId} updated successfuly");
                        }
                        else
                        {
                            logger?.LogInformation($"Employee Id:  {user.EmployeeId} is already exist");
                            return (false, null, $"Employee Id:  {user.EmployeeId} is already exist");
                        }
                    }
                    else
                    {
                        logger?.LogInformation($"User Id : {Id} Not found");
                        return (false, null, "Not Found");
                    }
                }
                else
                {
                    logger?.LogInformation($"User Id: {Id} Bad Request");
                    return (false, null, "Bad request");
                }
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, Models.User User, string ErrorMessage)> DeleteUserAsync(int Id)
        {
            try
            {
                var user = await userAccessDbContext.Users.Where(x => x.Id == Id).SingleOrDefaultAsync();
                if (user != null)
                {
                    userAccessDbContext.Users.Remove(user);
                    await userAccessDbContext.SaveChangesAsync();
                    logger?.LogInformation($"User Id: {Id} deleted Successfuly");
                    return (true, mapper.Map<Db.User, Models.User>(user), $"User Id: {Id} deleted Successfuly");
                }
                else
                {
                    logger?.LogInformation($"User Id : {Id} Not found");
                    return (false, null, "Not Found");
                }
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, TokenResponse TokenResponse, string ErrorMessage)> AuthenticateAsync(string employecode)
        {
            if (employecode != null)
              {
                //implementation for dadeschools authentication
                // var employees = await employeeServiceProvider.getEmployeesAsync();
                // var employee = employees.Where(e=> e.EmployeeCode.ToLower() == employecode.ToLower()).SingleOrDefault();
                var user = userAccessDbContext.Users.Where(x => x.IsActive == true && x.EmployeeCode.ToLower() == employecode.ToLower()).SingleOrDefault();
                          if (user != null)
                          {
                              var r = await GetRolesAsync();
                              var role = r.Roles.Where(x => x.Id == user.RoleId).SingleOrDefault();
                              var authClaims = new List<Claim> {
                               new Claim(ClaimTypes.Name, user.EmployeeCode),
                               new Claim(ClaimTypes.Role, role.Name),
                               new Claim(JwtRegisteredClaimNames.Jti,Guid.NewGuid().ToString())
                              };
                              /// Generate Token
                              var tokenhandler = new JwtSecurityTokenHandler();
                              var tokenkey = Encoding.UTF8.GetBytes(jwtSettings.securitykey);
                              var tokendesc = new SecurityTokenDescriptor
                              {
                                  Audience = "",
                                  NotBefore = DateTime.Now,
                                  Subject = new ClaimsIdentity(authClaims),
                                  Expires = DateTime.Now.AddMinutes(30),
                                  SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(tokenkey), SecurityAlgorithms.HmacSha256)
                              };
                              var token = tokenhandler.CreateToken(tokendesc);
                              string finaltoken = tokenhandler.WriteToken(token);
                              var response = new TokenResponse() { jwttoken = finaltoken, refreshtoken = await tokenServiceProvider.GenerateToken(mapper.Map<Db.User,Models.User>(user)) };
                              return (true, response, "Authentication success and token issued.");
                          }
                          else
                          {
                              return (false, null, "user inactive or not exist.");
                          }
                  }
              else
              {
                  return (false, null, "Credentials are required to authenticate.");
              }
        }
        public async Task<(bool IsSuccess, IEnumerable<Models.Role> Roles, string ErrorMessage)> GetRolesAsync()
        {
            try
            {
                logger?.LogInformation("Gell all Roles from DB");
                var roles = await userAccessDbContext.Roles.ToListAsync();
                if (roles != null)
                {
                    logger?.LogInformation($"{roles.Count} Items(s) found");
                    var result = mapper.Map<IEnumerable<Db.Role>, IEnumerable<Models.Role>>(roles);
                    return (true, result, null);
                }
                return (false, null, "Not found");
            }
            catch (Exception ex)
            {
                logger?.LogError(ex.ToString());
                return (false, null, ex.Message);
            }
        }
        public async Task<(bool IsSuccess, Models.TokenResponse TokenResponse, string ErrorMessage)> RefreshTokenAsync(TokenResponse tokenResponse)
        {
            //Generate token
            var tokenhandler = new JwtSecurityTokenHandler();
            var tokenkey = Encoding.UTF8.GetBytes(this.jwtSettings.securitykey);
            SecurityToken securityToken;
            var principal = tokenhandler.ValidateToken(tokenResponse.jwttoken, new TokenValidationParameters
            {
                ValidateIssuerSigningKey = true,
                IssuerSigningKey = new SymmetricSecurityKey(tokenkey),
                ValidateIssuer = false,
                ValidateAudience = false,
            }, out securityToken);
            var token = securityToken as JwtSecurityToken;
            if (token != null && !token.Header.Alg.Equals(SecurityAlgorithms.HmacSha256))
            {
                return (false, null, "Unauthorized");
            }
            var username = principal.Identity?.Name;
            var tokens = await userAccessDbContext.Tokens.ToListAsync();
            var users = await userAccessDbContext.Users.ToListAsync();
            var user = (from u in users
                        join t in tokens
                        on u.Id equals t.UserId
                        where u.EmployeeId == 1
                        && t.RefreshToken == tokenResponse.refreshtoken
                        select u).FirstOrDefault();
            if (user == null)
                return (false, null, "Invalid Token Response object provided");
            var _user = mapper.Map<Db.User, Models.User>(user);
            var response = tokenServiceProvider.TokenAuthenticate(_user, principal.Claims.ToArray()).Result;
            return (true, response, "Token authenticated and refreshed.");
        }
    }
 }
--- a/Show More
+++ b/Show More