A comprehensive Entity Framework Core data access library for .NET 10+ applications that provides enhanced auditing, flexible ID strategies, read-only entity protection, and simplified data operations.
Bounteous.Data enhances Entity Framework Core with enterprise-grade features for clean architecture and domain-driven design patterns. It provides automatic auditing, flexible identity strategies, read-only entity protection, and simplified data access patterns.
- ✅ Automatic Auditing - CreatedBy, ModifiedBy, Version tracking with zero boilerplate
- ✅ Flexible ID Strategies - Support for Guid, long, int for both entities and users
- ✅ Deletion Strategies - Explicit soft delete (ISoftDelete) or physical delete (IHardDelete) per entity
- ✅ GDPR Compliance - Force physical deletion with
Delete()method for "right to be forgotten" - ✅ Read-Only Protection - Two-layer defense (immediate + deferred validation)
- ✅ ReadOnlyDbSet - Fail-fast wrapper that throws exceptions immediately on write operations
- ✅ Automatic User Resolution - IIdentityProvider integration for seamless auth
- ✅ Query Extensions - WhereIf, IncludeIf, IncludeDeleted, pagination, FindById helpers
- ✅ Observer Pattern - Entity lifecycle events for logging and business rules
- ✅ Type Safety - Compile-time checking for ID types and audit fields
dotnet add package Bounteous.DataOr via Package Manager Console:
Install-Package Bounteous.Datausing Bounteous.Core.Extensions;
public void ConfigureServices(IServiceCollection services)
{
// Auto-register all services from the assembly
services.AutoRegister(typeof(Program).Assembly);
// Register your connection string provider
services.AddSingleton<IConnectionStringProvider, MyConnectionStringProvider>();
// Register your DbContext factory
services.AddScoped<IDbContextFactory<MyDbContext, Guid>, MyDbContextFactory>();
}using Bounteous.Data.Domain.Entities;
using Bounteous.Data.Domain.Interfaces;
// Soft delete entity - marked as deleted but retained in database
public class Customer : AuditBase, ISoftDelete
{
public bool IsDeleted { get; set; }
public string Name { get; set; } = string.Empty;
public string Email { get; set; } = string.Empty;
}
// Physical delete entity - permanently removed from database
public class TempLog : AuditBase, IHardDelete
{
public string Message { get; set; } = string.Empty;
public DateTime LoggedAt { get; set; }
}
// Legacy entity with long ID and soft delete
public class LegacyProduct : AuditBase<long, Guid>, ISoftDelete
{
public bool IsDeleted { get; set; }
public string Name { get; set; } = string.Empty;
public decimal Price { get; set; }
}
// Read-only entity (queries only, no CUD operations)
public class LegacySystem : ReadOnlyEntityBase<int>
{
public string SystemName { get; set; } = string.Empty;
}Important: All entities inheriting from AuditBase must implement either ISoftDelete or IHardDelete. This is validated at configuration time.
using Bounteous.Data;
using Bounteous.Data.Domain.ReadOnly;
public class MyDbContext : DbContextBase<Guid>
{
public MyDbContext(
DbContextOptions options,
IDbContextObserver? observer,
IIdentityProvider<Guid> identityProvider)
: base(options, observer, identityProvider)
{
}
public DbSet<Customer> Customers { get; set; }
public DbSet<LegacyProduct> LegacyProducts { get; set; }
// ReadOnlyDbSet for fail-fast protection
public ReadOnlyDbSet<LegacySystem, int> LegacySystems
=> Set<LegacySystem>().AsReadOnly<LegacySystem, int>();
protected override void RegisterModels(ModelBuilder modelBuilder)
{
// Configure legacy entities
modelBuilder.Entity<LegacyProduct>()
.Property(p => p.Id)
.ValueGeneratedNever();
}
}public class CustomerService
{
private readonly IDbContextFactory<MyDbContext, Guid> contextFactory;
public CustomerService(IDbContextFactory<MyDbContext, Guid> contextFactory)
=> this.contextFactory = contextFactory;
public async Task<Customer> CreateCustomerAsync(string name, string email)
{
using var context = contextFactory.Create();
// No need to call WithUserId() - IIdentityProvider handles it automatically!
var customer = new Customer { Name = name, Email = email };
context.Customers.Add(customer);
await context.SaveChangesAsync();
// Audit fields automatically populated:
// - customer.Id = new Guid
// - customer.CreatedBy = current user ID from IIdentityProvider
// - customer.CreatedOn = DateTime.UtcNow
// - customer.Version = 1
return customer;
}
}When you use AuditBase or AuditBase<TId, TUserId>, these fields are automatically managed:
// On Create:
entity.CreatedBy = currentUserId; // From IIdentityProvider or WithUserId()
entity.CreatedOn = DateTime.UtcNow;
entity.ModifiedBy = currentUserId;
entity.ModifiedOn = DateTime.UtcNow;
entity.Version = 1;
// On Update:
entity.ModifiedBy = currentUserId;
entity.ModifiedOn = DateTime.UtcNow;
entity.Version++; // Incremented for optimistic concurrencyBounteous.Data provides explicit deletion strategies using marker interfaces. Every entity inheriting from AuditBase must choose either soft delete or physical delete.
Entities marked with ISoftDelete are logically deleted - they remain in the database with IsDeleted = true and are automatically excluded from queries.
public class Customer : AuditBase, ISoftDelete
{
public bool IsDeleted { get; set; }
public string Name { get; set; } = string.Empty;
}
// Usage - Soft Delete
var customer = await context.Customers.FindAsync(id);
context.Customers.Remove(customer);
await context.SaveChangesAsync();
// Customer is soft-deleted (IsDeleted = true)
// Won't appear in normal queries
var customers = await context.Customers.ToListAsync(); // Excludes soft-deleted
// Include soft-deleted entities when needed
var allCustomers = await context.Customers
.IncludeDeleted()
.ToListAsync();Benefits:
- ✅ Maintains referential integrity
- ✅ Audit trail preserved
- ✅ Regulatory compliance (data retention)
- ✅ Automatic query filtering
Entities marked with IHardDelete are permanently deleted from the database when Remove() is called.
public class TempLog : AuditBase, IHardDelete
{
public string Message { get; set; } = string.Empty;
}
// Usage - Physical Delete
var log = await context.TempLogs.FindAsync(id);
context.TempLogs.Remove(log);
await context.SaveChangesAsync();
// Log is permanently deleted from databaseUse cases:
- ✅ Temporary data (logs, cache entries)
- ✅ Data with no retention requirements
- ✅ Performance-sensitive scenarios
For "right to be forgotten" requirements, soft-delete entities can be force-deleted using the Delete() extension method:
using Bounteous.Data.Extensions;
// Force physical deletion of a soft-delete entity
var customer = await context.Customers.FindAsync(id);
context.Customers.Delete(customer); // Forces physical delete
await context.SaveChangesAsync();
// Customer is permanently removed from database
// Batch deletion
var customers = await context.Customers
.Where(c => c.RequestedDeletion)
.ToListAsync();
context.Customers.DeleteRange(customers);
await context.SaveChangesAsync();The framework enforces these rules at configuration time:
-
Mutual Exclusivity: An entity cannot implement both
ISoftDeleteandIHardDelete// ❌ This will throw InvalidOperationException public class Invalid : AuditBase, ISoftDelete, IHardDelete { }
-
Required Strategy: All
AuditBaseentities must implement one deletion strategy// ❌ This will throw InvalidOperationException public class Invalid : AuditBase { } // ✅ Must choose one public class Valid : AuditBase, ISoftDelete { }
ISoftDelete entities:
- Automatically excluded from queries by default
- Use
.IncludeDeleted()to include soft-deleted entities - Use
.IgnoreQueryFilters()for raw access
IHardDelete entities:
- No query filtering applied
- Standard EF Core behavior
Bounteous.Data provides two layers of protection for read-only entities:
public class LegacySystem : ReadOnlyEntityBase<int>
{
public string SystemName { get; set; } = string.Empty;
}
// Error occurs at SaveChanges()
context.LegacySystems.Add(new LegacySystem { Id = 1 });
await context.SaveChangesAsync(); // ❌ Throws ReadOnlyEntityException herepublic ReadOnlyDbSet<LegacySystem, int> LegacySystems
=> Set<LegacySystem>().AsReadOnly<LegacySystem, int>();
// Error occurs immediately
context.LegacySystems.Add(new LegacySystem { Id = 1 }); // ❌ Throws immediately
// Safe async operations work directly on the ReadOnlyDbSet
var count = await context.LegacySystems.CountAsync();
var first = await context.LegacySystems.FirstOrDefaultAsync(s => s.IsActive);
var hasAny = await context.LegacySystems.AnyAsync(s => s.SystemName.Contains("Legacy"));
// LINQ queries work through IQueryable implementation
var filteredCount = await context.LegacySystems
.Where(s => s.SystemName.StartsWith("Legacy"))
.CountAsync();Benefits:
- ✅ Fail-fast behavior - errors caught at the point of invalid operation
- ✅ Clear intent - explicit read-only semantics in code
- ✅ Safe async operations - built-in methods for single-value queries
- ✅ Defense in depth - two layers of protection
- ✅ Performance safe - no methods that can load entire tables
For unit tests that need to seed read-only entities into an in-memory database, use the fluent API:
using Bounteous.Data.Extensions;
[Fact]
public async Task Test_With_ReadOnly_Data()
{
await using var context = CreateTestContext();
// Suppress validation during test data seeding - fluent API
using var scope = context.SuppressReadOnlyValidation();
context.LegacySystems.Add(new LegacySystem
{
Id = 1,
SystemName = "Test System"
});
await context.SaveChangesAsync(); // ✅ Succeeds within scope
// Validation automatically re-enabled after scope disposal
}Alternative syntax:
// Direct instantiation (still supported)
using (new ReadOnlyValidationScope())
{
// ...
}Key Points:
- ✅ Validation is always enforced by default in production
- ✅ Scope provides explicit, self-documenting test intent
- ✅ Thread-safe using
AsyncLocal<T>for async operations - ✅ Automatically re-enables validation when disposed
For query-only operations (GET endpoints, reports, list views), use the fluent API to enforce that no data modifications occur:
using Bounteous.Data.Extensions;
public class CompanyService
{
public async Task<List<Company>> GetCompaniesAsync()
{
await using var context = _contextFactory.Create();
// Enforce read-only mode for this entire request - fluent API
using var scope = context.EnforceReadOnly();
// Only queries allowed
return await context.Companies
.OrderBy(c => c.Name)
.ToListAsync();
// Any SaveChanges() call will throw InvalidOperationException
}
}Alternative syntax:
// Direct instantiation (still supported)
using (new ReadOnlyRequestScope())
{
// ...
}Benefits:
- ✅ Prevents accidental modifications in query-only workflows
- ✅ Fail-fast protection - catches bugs at SaveChanges
- ✅ Self-documenting code - clearly marks read-only operations
- ✅ Thread-safe with
AsyncLocal<T>for concurrent requests
Comparison:
| Feature | ReadOnlyValidationScope | ReadOnlyRequestScope |
|---|---|---|
| Purpose | Suppress validation for test seeding | Enforce read-only for query operations |
| When to use | Unit tests only | Production query endpoints |
| Effect | Allows modifications to readonly entities | Blocks ALL modifications |
| Throws on SaveChanges | No (suppresses) | Yes (enforces) |
For detailed documentation including:
- Complete API reference
- Advanced scenarios (mixed ID strategies, custom observers, etc.)
- IIdentityProvider implementation examples
- Query extensions and helpers
- Value converters
- Best practices and migration guides
See the comprehensive developer documentation
- Fork the repository
- Create a feature branch
- Make your changes
- Add tests for new functionality (xUnit preferred)
- Ensure all tests pass:
dotnet test - Submit a pull request
This project is licensed under the terms specified in the LICENSE file.