From 20ba638b6434a341a5071a6335d535dbef631eec Mon Sep 17 00:00:00 2001 From: ThompsonNye Date: Fri, 13 Jun 2025 20:12:26 +0200 Subject: [PATCH] Fix server info endpoint not being accessibly without authentication --- .../Endpoints/EndpointExtensions.cs | 37 ++++++++++++------- 1 file changed, 23 insertions(+), 14 deletions(-) diff --git a/src/Vegasco.Server.Api/Endpoints/EndpointExtensions.cs b/src/Vegasco.Server.Api/Endpoints/EndpointExtensions.cs index c389ef7..1febd76 100644 --- a/src/Vegasco.Server.Api/Endpoints/EndpointExtensions.cs +++ b/src/Vegasco.Server.Api/Endpoints/EndpointExtensions.cs @@ -12,24 +12,33 @@ public static class EndpointExtensions public static void MapEndpoints(this IEndpointRouteBuilder builder) { ApiVersionSet apiVersionSet = builder.NewApiVersionSet() - .HasApiVersion(1.0) - .Build(); + .HasApiVersion(1.0) + .Build(); RouteGroupBuilder versionedApis = builder.MapGroup("/v{apiVersion:apiVersion}") - .WithApiVersionSet(apiVersionSet) + .WithApiVersionSet(apiVersionSet); + + GetCar.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + GetCars.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + CreateCar.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + UpdateCar.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + DeleteCar.MapEndpoint(versionedApis) .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); - GetCar.MapEndpoint(versionedApis); - GetCars.MapEndpoint(versionedApis); - CreateCar.MapEndpoint(versionedApis); - UpdateCar.MapEndpoint(versionedApis); - DeleteCar.MapEndpoint(versionedApis); - - GetConsumptions.MapEndpoint(versionedApis); - GetConsumption.MapEndpoint(versionedApis); - CreateConsumption.MapEndpoint(versionedApis); - UpdateConsumption.MapEndpoint(versionedApis); - DeleteConsumption.MapEndpoint(versionedApis); + GetConsumptions.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + GetConsumption.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + CreateConsumption.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + UpdateConsumption.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); + DeleteConsumption.MapEndpoint(versionedApis) + .RequireAuthorization(Constants.Authorization.RequireAuthenticatedUserPolicy); GetServerInfo.MapEndpoint(versionedApis); }