32 lines
1013 B
C#
32 lines
1013 B
C#
using cuqmbr.TravelGuide.Application.Common.Authorization;
|
|
using cuqmbr.TravelGuide.Application.Common.Interfaces.Services;
|
|
using cuqmbr.TravelGuide.Application.Common.Models;
|
|
using MediatR.Behaviors.Authorization;
|
|
|
|
namespace cuqmbr.TravelGuide.Application.Employees.Queries.GetEmployeesPage;
|
|
|
|
public class GetEmployeesPageQueryAuthorizer :
|
|
AbstractRequestAuthorizer<GetEmployeesPageQuery>
|
|
{
|
|
private readonly SessionUserService _sessionUserService;
|
|
|
|
public GetEmployeesPageQueryAuthorizer(SessionUserService sessionUserService)
|
|
{
|
|
_sessionUserService = sessionUserService;
|
|
}
|
|
|
|
public override void BuildPolicy(GetEmployeesPageQuery request)
|
|
{
|
|
UseRequirement(new MustBeAuthenticatedRequirement
|
|
{
|
|
IsAuthenticated= _sessionUserService.IsAuthenticated
|
|
});
|
|
|
|
UseRequirement(new MustBeInRolesRequirement
|
|
{
|
|
RequiredRoles = [IdentityRole.Administrator],
|
|
UserRoles = _sessionUserService.Roles
|
|
});
|
|
}
|
|
}
|