mirror of
https://github.com/btcpayserver/btcpayserver.git
synced 2024-11-19 09:54:30 +01:00
60 lines
1.9 KiB
C#
60 lines
1.9 KiB
C#
using System;
|
|
using System.Linq;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Http;
|
|
using Microsoft.AspNetCore.Routing;
|
|
|
|
namespace BTCPayServer.Security
|
|
{
|
|
public static class SecurityExtensions
|
|
{
|
|
public static bool HasScopes(this AuthorizationHandlerContext context, params string[] scopes)
|
|
{
|
|
return scopes.All(s => context.User.HasClaim(c => c.Type.Equals("scope", StringComparison.InvariantCultureIgnoreCase) && c.Value.Split(' ').Contains(s)));
|
|
}
|
|
|
|
public static string GetImplicitStoreId(this HttpContext httpContext)
|
|
{
|
|
// 1. Check in the routeData
|
|
var routeData = httpContext.GetRouteData();
|
|
string storeId = null;
|
|
if (routeData != null)
|
|
{
|
|
if (routeData.Values.TryGetValue("storeId", out var v))
|
|
storeId = v as string;
|
|
}
|
|
|
|
if (storeId == null)
|
|
{
|
|
if (httpContext.Request.Query.TryGetValue("storeId", out var sv))
|
|
{
|
|
storeId = sv.FirstOrDefault();
|
|
}
|
|
}
|
|
|
|
// 2. Check in forms
|
|
if (storeId == null)
|
|
{
|
|
if (httpContext.Request.HasFormContentType &&
|
|
httpContext.Request.Form != null &&
|
|
httpContext.Request.Form.TryGetValue("storeId", out var sv))
|
|
{
|
|
storeId = sv.FirstOrDefault();
|
|
}
|
|
}
|
|
|
|
// 3. Checks in walletId
|
|
if (storeId == null && routeData != null)
|
|
{
|
|
if (routeData.Values.TryGetValue("walletId", out var walletId) &&
|
|
WalletId.TryParse((string)walletId, out var w))
|
|
{
|
|
storeId = w.StoreId;
|
|
}
|
|
}
|
|
|
|
return storeId;
|
|
}
|
|
}
|
|
}
|