Update authz

damienbod · Apr 15, 2024 · c9ea7f0 · c9ea7f0
1 parent fbb026d
commit c9ea7f0
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 4 deletions.
diff --git a/dry/Server/Program.cs b/dry/Server/Program.cs
@@ -1,5 +1,6 @@
 using dry.Server;
 using dry.Server.Services;
+using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.Identity.Web;
 using Microsoft.Identity.Web.UI;
@@ -41,7 +42,7 @@
 services.AddControllersWithViews(options =>
     options.Filters.Add(new AutoValidateAntiforgeryTokenAttribute()));
 
-services.AddSingleton<UserAdminHandler>();
+services.AddSingleton<IAuthorizationHandler, UserAdminHandler>();
 
 services.AddAuthorization(options =>
 {

diff --git a/dry/Server/UserAdminHandler.cs b/dry/Server/UserAdminHandler.cs
@@ -6,10 +6,10 @@ public class UserAdminHandler : AuthorizationHandler<UserAdminRequirement>
 {
     protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, UserAdminRequirement requirement)
     {
-        var userClaim = context.User.FindFirst(c => c.Type == "roles" && c.Value == "user");
-        var adminClaim = context.User.FindFirst(c => c.Type == "roles" && c.Value == "admin");
+        var userClaim = context.User.HasClaim(c => c.Type == "roles" && c.Value == "user");
+        var adminClaim = context.User.HasClaim(c => c.Type == "roles" && c.Value == "admin");
 
-        if (userClaim is null && adminClaim is null)
+        if (userClaim && adminClaim)
         {
             return Task.CompletedTask;
         }