Nejcraft/NejCommon.NET
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
45d7674f86
NejCommon.NET/Authorization/PermissionHandler.cs
honzapatCZ 45d7674f86 fixup bearer auth
2026-04-03 12:26:36 +02:00

51 lines
1.5 KiB
C#
Raw Blame History

using System.Security.Claims;
using AspNetCore.Authentication.ApiKey;
using Microsoft.AspNetCore.Authorization;
using Microsoft.EntityFrameworkCore;
namespace NejCommon.Authorization;
public partial class PermissionHandler : AuthorizationHandler<PermissionRequirement>
{
protected override async Task HandleRequirementAsync(
AuthorizationHandlerContext context,
PermissionRequirement requirement)
{
if (context.Resource is not HttpContext http)
return;
var companyId = http.GetRouteValue("companyId")?.ToString();
if (companyId == null)
{
context.Succeed(requirement);
return;
}
var authType = context.User.Identity?.AuthenticationType;
if (authType == null)
return;
bool allowed;
if (authType == ApiKeyDefaults.AuthenticationScheme)
{
var id = context.User.FindFirst(ClaimTypes.NameIdentifier)?.Value;
if (id == null)
return;
allowed = await CheckApiKeyPermission(id, companyId, requirement.Permission);
}
else
{
Console.WriteLine(string.Join(',', context.User.Claims.Select(c => $"{c.Type}: {c.Value}")));
var sub = context.User.FindFirst(ClaimTypes.NameIdentifier)?.Value;
if (sub == null)
return;
allowed = await CheckUserPermission(sub, companyId, requirement.Permission);
}
if (allowed)
context.Succeed(requirement);
}
}
Reference in New Issue View Git Blame Copy Permalink