mirror of
https://github.com/btcpayserver/btcpayserver.git
synced 2025-02-22 14:22:40 +01:00
119 lines
4.4 KiB
C#
119 lines
4.4 KiB
C#
using System.Threading.Tasks;
|
|
using BTCPayServer.Authentication;
|
|
using BTCPayServer.Data;
|
|
using BTCPayServer.Models;
|
|
using BTCPayServer.Security;
|
|
using BTCPayServer.Services.Stores;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using OpenIddict.Validation;
|
|
#if !NETCOREAPP21
|
|
using OpenIddictValidationDefaults = Microsoft.AspNetCore.Authentication.OpenIdConnect.OpenIdConnectDefaults;
|
|
#endif
|
|
|
|
namespace BTCPayServer.Controllers.RestApi
|
|
{
|
|
/// <summary>
|
|
/// this controller serves as a testing endpoint for our OpenId unit tests
|
|
/// </summary>
|
|
[Route("api/[controller]")]
|
|
[ApiController]
|
|
[Authorize(AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
public class TestController : ControllerBase
|
|
{
|
|
private readonly UserManager<ApplicationUser> _userManager;
|
|
private readonly StoreRepository _storeRepository;
|
|
|
|
public TestController(UserManager<ApplicationUser> userManager, StoreRepository storeRepository)
|
|
{
|
|
_userManager = userManager;
|
|
_storeRepository = storeRepository;
|
|
}
|
|
|
|
[HttpGet("me/id")]
|
|
public string GetCurrentUserId()
|
|
{
|
|
return _userManager.GetUserId(User);
|
|
}
|
|
|
|
[HttpGet("me")]
|
|
public async Task<ApplicationUser> GetCurrentUser()
|
|
{
|
|
return await _userManager.GetUserAsync(User);
|
|
}
|
|
|
|
[HttpGet("me/is-admin")]
|
|
public bool AmIAnAdmin()
|
|
{
|
|
return User.IsInRole(Roles.ServerAdmin);
|
|
}
|
|
|
|
[HttpGet("me/stores")]
|
|
public async Task<StoreData[]> GetCurrentUserStores()
|
|
{
|
|
return await _storeRepository.GetStoresByUserId(_userManager.GetUserId(User));
|
|
}
|
|
|
|
|
|
[HttpGet("me/stores/{storeId}/can-edit")]
|
|
[Authorize(Policy = Policies.CanModifyStoreSettings.Key,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
public bool CanEdit(string storeId)
|
|
{
|
|
return true;
|
|
}
|
|
|
|
|
|
#region scopes tests
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanViewStores,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
[HttpGet(nameof(ScopeCanViewStores))]
|
|
public bool ScopeCanViewStores() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanManageStores,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
[HttpGet(nameof(ScopeCanManageStores))]
|
|
public bool ScopeCanManageStores() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanViewInvoices,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
[HttpGet(nameof(ScopeCanViewInvoices))]
|
|
public bool ScopeCanViewInvoices() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanCreateInvoices,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
[HttpGet(nameof(ScopeCanCreateInvoices))]
|
|
public bool ScopeCanCreateInvoices() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanManageInvoices,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
[HttpGet(nameof(ScopeCanManageInvoices))]
|
|
public bool ScopeCanManageInvoices() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanManageApps,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
[HttpGet(nameof(ScopeCanManageApps))]
|
|
public bool ScopeCanManageApps() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanViewApps,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
|
|
[HttpGet(nameof(ScopeCanViewApps))]
|
|
public bool ScopeCanViewApps() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanManageWallet,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
[HttpGet(nameof(ScopeCanManageWallet))]
|
|
public bool ScopeCanManageWallet() { return true; }
|
|
|
|
[Authorize(Policy = RestAPIPolicies.CanViewProfile,
|
|
AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
|
|
[HttpGet(nameof(ScopeCanViewProfile))]
|
|
public bool ScopeCanViewProfile() { return true; }
|
|
|
|
#endregion
|
|
}
|
|
}
|