Cleanup and some edge case fixes

2025-07-06 16:42:21 +02:00 · 2025-07-06 16:42:21 +02:00 · 6e72c74fde
commit 6e72c74fde
parent b6bfc65bc4
17 changed files with 172 additions and 148 deletions
--- a/API/Extensions/EnumerableExtensions.cs
+++ b/API/Extensions/EnumerableExtensions.cs
@ -6,6 +6,7 @@ using API.Data.Misc;
 using API.Entities;
 using API.Entities.Enums;
 using API.Entities.Metadata;
+using Microsoft.AspNetCore.Identity;

 namespace API.Extensions;
 #nullable enable
@ -68,4 +69,9 @@ public static class EnumerableExtensions

        return q;
    }
+
+    public static string AsJoinedString(this IEnumerable<IdentityError> errors)
+    {
+        return string.Join(",", errors.Select(e => e.Description));
+    }
 }
--- a/API/Extensions/IdentityServiceExtensions.cs
+++ b/API/Extensions/IdentityServiceExtensions.cs
@ -146,14 +146,10 @@ public static class IdentityServiceExtensions
        });


-        services.AddAuthorization(opt =>
-        {
-            opt.AddPolicy("RequireAdminRole", policy => policy.RequireRole(PolicyConstants.AdminRole));
-            opt.AddPolicy("RequireDownloadRole",
-                policy => policy.RequireRole(PolicyConstants.DownloadRole, PolicyConstants.AdminRole));
-            opt.AddPolicy("RequireChangePasswordRole",
-                policy => policy.RequireRole(PolicyConstants.ChangePasswordRole, PolicyConstants.AdminRole));
-        });
+        services.AddAuthorizationBuilder()
+            .AddPolicy("RequireAdminRole", policy => policy.RequireRole(PolicyConstants.AdminRole))
+            .AddPolicy("RequireDownloadRole", policy => policy.RequireRole(PolicyConstants.DownloadRole, PolicyConstants.AdminRole))
+            .AddPolicy("RequireChangePasswordRole", policy => policy.RequireRole(PolicyConstants.ChangePasswordRole, PolicyConstants.AdminRole));

        return services;
    }
@ -163,7 +159,6 @@ public static class IdentityServiceExtensions
        if (ctx.Principal == null) return;

        var oidcService = ctx.HttpContext.RequestServices.GetRequiredService<IOidcService>();
-        var unitOfWork = ctx.HttpContext.RequestServices.GetRequiredService<IUnitOfWork>();
        var user = await oidcService.LoginOrCreate(ctx.Principal);
        if (user == null)
        {
@ -180,6 +175,7 @@ public static class IdentityServiceExtensions
            new(ClaimTypes.Name, user.UserName ?? string.Empty),
        };

+        var unitOfWork = ctx.HttpContext.RequestServices.GetRequiredService<IUnitOfWork>();
        var settings = await unitOfWork.SettingsRepository.GetSettingsDtoAsync();
        if (user.Owner != AppUserOwner.OpenIdConnect || !settings.OidcConfig.SyncUserSettings)
        {