Rafsanul Hasan
5 years ago
committed by
GitHub
GitHub
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 27 additions and 27 deletions
Unified View
Diff Options
+ 27
- 27
src/ApiGateways/Web.Bff.Shopping/aggregator/Filters/AuthorizeCheckOperationFilter.cs
View File
| @ -1,37 +1,37 @@ | |||||
| namespace Microsoft.eShopOnContainers.Web.Shopping.HttpAggregator.Filters | namespace Microsoft.eShopOnContainers.Web.Shopping.HttpAggregator.Filters | ||||
| { | { | ||||
| using Microsoft.AspNetCore.Authorization; | |||||
| using Swashbuckle.AspNetCore.Swagger; | |||||
| using Swashbuckle.AspNetCore.SwaggerGen; | |||||
| using System.Collections.Generic; | |||||
| using System.Linq; | |||||
| using Microsoft.AspNetCore.Authorization; | |||||
| using Swashbuckle.AspNetCore.Swagger; | |||||
| using Swashbuckle.AspNetCore.SwaggerGen; | |||||
| using System.Collections.Generic; | |||||
| using System.Linq; | |||||
| namespace Basket.API.Infrastructure.Filters | |||||
| namespace Basket.API.Infrastructure.Filters | |||||
| { | |||||
| public class AuthorizeCheckOperationFilter : IOperationFilter | |||||
| { | { | ||||
| public class AuthorizeCheckOperationFilter : IOperationFilter | |||||
| { | |||||
| public void Apply(Operation operation, OperationFilterContext context) | |||||
| { | |||||
| // Check for authorize attribute | |||||
| public void Apply(Operation operation, OperationFilterContext context) | |||||
| { | |||||
| // Check for authorize attribute | |||||
| var hasAuthorize = context.MethodInfo.DeclaringType.GetCustomAttributes(true) | |||||
| .Union(context.MethodInfo.GetCustomAttributes(true)) | |||||
| .OfType<AuthorizeAttribute>().Any(); | |||||
| var hasAuthorize = context.MethodInfo.DeclaringType.GetCustomAttributes(true) | |||||
| .Union(context.MethodInfo.GetCustomAttributes(true)) | |||||
| .OfType<AuthorizeAttribute>().Any(); | |||||
| if (hasAuthorize) | |||||
| { | |||||
| operation.Responses.Add("401", new Response { Description = "Unauthorized" }); | |||||
| operation.Responses.Add("403", new Response { Description = "Forbidden" }); | |||||
| if (hasAuthorize) | |||||
| { | |||||
| operation.Responses.Add("401", new Response { Description = "Unauthorized" }); | |||||
| operation.Responses.Add("403", new Response { Description = "Forbidden" }); | |||||
| operation.Security = new List<IDictionary<string, IEnumerable<string>>> | |||||
| { | |||||
| new Dictionary<string, IEnumerable<string>> | |||||
| { | |||||
| { "oauth2", new [] { "Microsoft.eShopOnContainers.Web.Shopping.HttpAggregator" } } | |||||
| } | |||||
| }; | |||||
| } | |||||
| operation.Security = new List<IDictionary<string, IEnumerable<string>>> | |||||
| { | |||||
| new Dictionary<string, IEnumerable<string>> | |||||
| { | |||||
| { "oauth2", new [] { "Microsoft.eShopOnContainers.Web.Shopping.HttpAggregator" } } | |||||
| } | } | ||||
| } | |||||
| }; | |||||
| } | |||||
| } | |||||
| } | } | ||||
| } | |||||
| } | } | ||||