mirror of
https://github.com/btcpayserver/btcpayserver.git
synced 2025-02-22 06:21:44 +01:00
4055eda757
* Part 1 & Part 2 squashed commits pr changes pr fixes remove config for openid -- no need for it for now Part 1: OpenIddict - Minor Changes & Config prep Part2: Openiddict: Init OpenIddict & Database Migration & Auth Policies pr changes fix merge fix compile fix compile #2 Part 1: OpenIddict - Minor Changes & Config prep add missing nuget Part2: Openiddict: Init OpenIddict & Database Migration & Auth Policies * Part3: OpenIddict: Add Flows Event Handlers * pr changes * fix merge * fix rebase * fix imports * cleanup * do not allow u2f enabled accounts to log in * start better tests for flows * add tests * fixes * reintroduce dynamic policy as policies on jwt do not work without it * reduce logs * fix incorrect endpoint definitions * Add implicit flow e2e test * add code flow and refresh flow * do not allow jwt bearer auth for all requests( only those under /api) * remove commentedt code * make sure authorize attr is marked with scheme * remove dynamic policy and set claims in jwt handler * cleanup * change serversettings policy to not need a claim * Add test to checkadmin verification * revert server setting claim removal * fix test * switch back to claim * unit test fixes * try fix build with weird references to csprojes * start fixing rebase * remove https requirement to handle tor * reformat tests correctly * fix csproj * fix ut formatting * PR Changes * do not show selenium browser
61 lines
1.9 KiB
C#
61 lines
1.9 KiB
C#
using System.Threading.Tasks;
|
|
using BTCPayServer.Data;
|
|
using BTCPayServer.Models;
|
|
using BTCPayServer.Security;
|
|
using BTCPayServer.Services.Stores;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using OpenIddict.Validation;
|
|
|
|
namespace BTCPayServer.Controllers.RestApi
|
|
{
|
|
/// <summary>
|
|
/// this controller serves as a testing endpoint for our OpenId unit tests
|
|
/// </summary>
|
|
[Route("api/[controller]")]
|
|
[ApiController]
|
|
[Authorize(AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
public class TestController : ControllerBase
|
|
{
|
|
private readonly UserManager<ApplicationUser> _userManager;
|
|
private readonly StoreRepository _storeRepository;
|
|
|
|
public TestController(UserManager<ApplicationUser> userManager, StoreRepository storeRepository)
|
|
{
|
|
_userManager = userManager;
|
|
_storeRepository = storeRepository;
|
|
}
|
|
|
|
[HttpGet("me/id")]
|
|
public string GetCurrentUserId()
|
|
{
|
|
return _userManager.GetUserId(User);
|
|
}
|
|
|
|
[HttpGet("me")]
|
|
public async Task<ApplicationUser> GetCurrentUser()
|
|
{
|
|
return await _userManager.GetUserAsync(User);
|
|
}
|
|
|
|
[HttpGet("me/is-admin")]
|
|
public bool AmIAnAdmin()
|
|
{
|
|
return User.IsInRole(Roles.ServerAdmin);
|
|
}
|
|
[HttpGet("me/stores")]
|
|
public async Task<StoreData[]> GetCurrentUserStores()
|
|
{
|
|
return await _storeRepository.GetStoresByUserId(_userManager.GetUserId(User));
|
|
}
|
|
|
|
|
|
[HttpGet("me/stores/{storeId}/can-edit")]
|
|
[Authorize(Policy = Policies.CanModifyStoreSettings.Key, AuthenticationSchemes = OpenIddictValidationDefaults.AuthenticationScheme)]
|
|
public bool CanEdit(string storeId)
|
|
{
|
|
return true;
|
|
}
|
|
}
|
|
}
|