homeburger/agologum
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

rework policies to use permissions over roles
Some checks failed
Build and Deploy API / build-and-deploy (push) Failing after 7s
Details
Build and Deploy Frontend / build-and-deploy (push) Successful in 6s
Details

Browse Source
This commit is contained in:
Blitblank
2026-04-22 19:34:55 -05:00
parent 1a0bf385b6
commit 152db3d99f
6 changed files with 27 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
api/src/Services/JwtService.cs
View File

@@ -31,21 +31,22 @@ public class JwtService {
if(user.UserName == null) return null;
var roles = await userManager_.GetRolesAsync(user);
// not too sure
var claims = new List<Claim> {
new Claim(ClaimTypes.Name, user.UserName),
new Claim(ClaimTypes.NameIdentifier, user.Id.ToString())
};
claims.AddRange(roles.Select(role => new Claim(ClaimTypes.Role, role)));
List<string> permissions = user.Permissions;
foreach(var perm in permissions) {
claims.Add(new Claim("permission", perm));
}
var token = new JwtSecurityToken(
issuer: "agologum",
audience: "agologum",
claims: claims,
expires: DateTime.UtcNow.AddHours(2), // will add a refresher later
expires: DateTime.UtcNow.AddHours(2),
signingCredentials: creds
);