Elarion
Tutorial

Host the API

Compose the modules in an ASP.NET Core host, publish a JSON-RPC endpoint, expose the same handlers as MCP tools, and wire OpenTelemetry.

The application project declared what the app does. The host wires how it runs: the database provider, the scheduler and resilience runtimes, caching, authentication, the JSON-RPC and MCP endpoints, and telemetry. None of this leaks back into the modules.

Add the generated host partial

One partial class tells the generator to emit the cross-module wiring in the host assembly.

src/Billing.Api/Hosting/ModuleBootstrapper.cs
using Elarion.AspNetCore;

namespace Billing.Api.Hosting;

[GenerateModuleBootstrapper]
public static partial class ModuleBootstrapper;

ModuleBootstrapper gains ConfigureAllServices, MapAllEndpoints, RegisterRpcMethods (JSON-RPC), RegisterMcpMethods and GetMcpMetadata (MCP), and GetAllJsonTypeInfoResolvers. Every transport is feature-flag-gated per module, so a disabled module disappears from all of them at once.

Install the remaining host packages

The host adds authentication and OpenTelemetry on top of the Elarion packages from the overview:

cd src/Billing.Api
dotnet add package Microsoft.AspNetCore.Authentication.JwtBearer
dotnet add package OpenTelemetry.Extensions.Hosting
dotnet add package OpenTelemetry.Instrumentation.AspNetCore
dotnet add package OpenTelemetry.Exporter.OpenTelemetryProtocol
cd ../..

Register the services

Compose the host. Each block is a platform capability the modules consume through an abstraction.

src/Billing.Api/Program.cs
using System.Text.Json;
using System.Text.Json.Serialization;
using System.Text.Json.Serialization.Metadata;
using Billing.Api.Hosting;
using Billing.Application;
using Billing.Application.Modules.Invoicing.Services;
using Billing.Infrastructure.Data;
using Billing.Infrastructure.Email;
using Elarion.Abstractions.Diagnostics;
using Elarion.Abstractions.Scheduling;
using Elarion.AspNetCore;
using Elarion.AspNetCore.Identity;
using Elarion.AspNetCore.Mcp;
using Elarion.Caching;
using Elarion.Messaging.Outbox;
using Elarion.JsonRpc;
using Elarion.Resilience;
using Elarion.Scheduling;
using Microsoft.EntityFrameworkCore;
using OpenTelemetry.Metrics;
using OpenTelemetry.Trace;

var builder = WebApplication.CreateSlimBuilder(args);

// Clock — used by handlers, jobs, and the current-user snapshot.
builder.Services.AddSingleton(TimeProvider.System);

// Database: the concrete context is infrastructure; handlers see only IAppDbContext.
builder.Services.AddDbContext<BillingDbContext>(o =>
    o.UseNpgsql(builder.Configuration.GetConnectionString("Billing")));
builder.Services.AddScoped<IAppDbContext>(sp => sp.GetRequiredService<BillingDbContext>());
builder.Services.AddScoped<DbContext>(sp => sp.GetRequiredService<BillingDbContext>());

// Integration events: durable, after-commit delivery via the EF Core outbox on the billing context.
builder.Services.AddElarionOutbox<BillingDbContext>();

// Infrastructure capability: the concrete email sender behind the module's port.
builder.Services.AddScoped<IInvoiceEmailSender, SmtpInvoiceEmailSender>();

// Scheduler runtime. Job descriptors and event consumers are composed per module by
// ModuleBootstrapper.ConfigureAllServices below — there is no explicit Add…ScheduledJobs call.
builder.Services.AddInMemoryScheduler(builder.Configuration);

// Resilience: generated policy metadata + the Microsoft/Polly-backed runtime.
builder.Services.AddBillingApplicationResiliencePolicies();
builder.Services.AddMicrosoftResilienceRuntime();

// Per-user handler caching, backed by HybridCache.
builder.Services.AddElarionHandlerCaching();

// Transport-neutral current user, filled from the authenticated principal.
builder.Services.AddElarionCurrentUser(options => options.UserIdClaimType = "sub");

// Authentication: a JWT bearer issuer of your choice (Entra, Auth0, Keycloak, …).
builder.Services.AddAuthentication("Bearer")
    .AddJwtBearer(options => {
        options.Authority = builder.Configuration["Auth:Authority"];
        options.Audience = builder.Configuration["Auth:Audience"];
    });
builder.Services.AddAuthorization();

// Compose every module's services — handlers, services, validators, scheduled jobs, and event
// consumers — each gated by Modules:{Name}:Enabled.
ModuleBootstrapper.ConfigureAllServices(builder.Services, builder.Configuration);

// JSON-RPC: one serializer for runtime dispatch and schema export; methods gated per module.
var serializerOptions = CreateSerializerOptions(builder.Configuration);
builder.Services.AddSingleton(serializerOptions);
builder.Services.AddJsonRpc(serializerOptions, ModuleBootstrapper.RegisterRpcMethods);

// MCP: an independent, equally gated transport with its own dispatcher.
builder.Services.AddElarionMcp(
    ModuleBootstrapper.GetMcpMetadata(builder.Configuration),
    serializerOptions,
    ModuleBootstrapper.RegisterMcpMethods,
    o => o.ServerName = "Billing");

// Telemetry: register the Elarion sources/meters; the host owns the exporters.
builder.Services.AddOpenTelemetry()
    .WithTracing(t => t
        .AddSource(
            JsonRpcTelemetry.ActivitySourceName,
            SchedulerTelemetry.ActivitySourceName,
            HandlerCacheTelemetry.ActivitySourceName,
            ResilienceTelemetry.ActivitySourceName,
            HandlerTelemetry.ActivitySourceName)
        .AddAspNetCoreInstrumentation()
        .AddOtlpExporter())
    .WithMetrics(m => m
        .AddMeter(
            JsonRpcTelemetry.MeterName,
            SchedulerTelemetry.MeterName,
            HandlerCacheTelemetry.MeterName,
            ResilienceTelemetry.MeterName,
            HandlerTelemetry.MeterName)
        .AddAspNetCoreInstrumentation()
        .AddOtlpExporter());

Build, order the middleware, and map endpoints

UseElarionCurrentUser() must run after authentication so the principal exists, and before the endpoints so handlers can read it.

src/Billing.Api/Program.cs (continued)
var app = builder.Build();

app.UseAuthentication();
app.UseElarionCurrentUser();   // snapshot claims into the scoped ICurrentUser
app.UseAuthorization();

ModuleBootstrapper.MapAllEndpoints(app, app.Configuration);
app.MapJsonRpc().RequireAuthorization();        // POST /rpc
app.MapElarionMcp().RequireAuthorization();     // /mcp — independent of /rpc

app.Run();

static JsonSerializerOptions CreateSerializerOptions(IConfiguration configuration) {
    var moduleResolvers = ModuleBootstrapper.GetAllJsonTypeInfoResolvers(configuration);
    return new JsonSerializerOptions {
        PropertyNamingPolicy = JsonNamingPolicy.CamelCase,
        PropertyNameCaseInsensitive = true,
        DefaultIgnoreCondition = JsonIgnoreCondition.WhenWritingNull,
        TypeInfoResolver = JsonTypeInfoResolver.Combine(
            [JsonRpcJsonContext.Default, .. moduleResolvers, new DefaultJsonTypeInfoResolver()]),
    };
}

The same serializerOptions instance flows into the JSON-RPC dispatcher, the MCP server, and schema export — so the generated TypeScript types match exactly what the server serializes. MCP owns its own dispatcher, so you could expose it without ever calling MapJsonRpc().

Add the scheduler section to configuration so the in-memory runtime is enabled:

src/Billing.Api/appsettings.json
{
  "Scheduler": {
    "Enabled": true,
    "MaxConcurrentExecutions": 8
  }
}

Export the schema on every build

Wire the build-time schema exporter so rpc-schema.json is written to the repo root whenever the host compiles. The frontend client is generated from it.

src/Billing.Api/Billing.Api.csproj
<ItemGroup>
  <PackageReference Include="Elarion.AspNetCore.SchemaGeneration" PrivateAssets="all" />
</ItemGroup>

<PropertyGroup>
  <ElarionJsonRpcGenerateSchema>true</ElarionJsonRpcGenerateSchema>
  <ElarionJsonRpcSchemaOutputPath>$(MSBuildProjectDirectory)/../../rpc-schema.json</ElarionJsonRpcSchemaOutputPath>
</PropertyGroup>

The target launches the host up to builder.Build(), reads the frozen dispatcher, and writes the schema. Code after builder.Build() does not run during generation, so there is nothing to guard here.

Run it

dotnet run --project src/Billing.Api

With a valid bearer token, create a client over JSON-RPC:

curl -s http://localhost:5000/rpc \
  -H 'authorization: Bearer <token>' \
  -H 'content-type: application/json' \
  -d '{
        "jsonrpc": "2.0",
        "id": 1,
        "method": "clients.create",
        "params": { "name": "Acme Inc.", "email": "billing@acme.test" }
      }'

A success returns { "id": "…", "number": "C-000001" }; a duplicate email returns the JSON-RPC error your host mapped from AppError.Conflict. The MCP server is live at /mcp for any MCP client, exposing clients.create, invoices.create, and the rest as tools.

What the host owns — and what it doesn't

The host owns the database provider, authentication, middleware order, the scheduler/resilience/cache runtimes, telemetry exporters, and endpoint publication. It owns nothing about clients or invoices beyond registering one email capability. Swap PostgreSQL for SQL Server, or the OTLP exporter for Prometheus, without touching a single module.

Next: Build the frontend

Generate the typed client and call these handlers from React with TanStack Query.

Background work

Build the Invoicing module — send invoice emails through a resilient retrying job, observe its status, and chase overdue invoices on a nightly cron.

Build the frontend

Generate a typed client from the schema and call the Billing handlers from a React app with TanStack Query, AbortSignal cancellation, and shadcn/ui.

On this page

Add the generated host partialInstall the remaining host packagesRegister the servicesBuild, order the middleware, and map endpointsExport the schema on every buildRun itWhat the host owns — and what it doesn't