xTr1m/GameList
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Remove admin key support; admin must be authenticated

Browse Source
This commit is contained in:
Frank Tovar
2026-02-05 17:07:37 +01:00
parent 52960a78bc
commit 6b5f8a66c9
4 changed files with 23 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
Endpoints/SuggestEndpoints.cs
View File

@@ -109,11 +109,11 @@ public static class SuggestEndpoints
return Results.Created($"/api/suggestions/{suggestion.Id}", new { suggestion.Id });
});
group.MapDelete("/{id:int}", async (int id, HttpContext ctx, AppDbContext db, IConfiguration config) =>
group.MapDelete("/{id:int}", async (int id, HttpContext ctx, AppDbContext db) =>
{
var player = await EndpointHelpers.GetAuthenticatedPlayer(ctx, db);
if (player is null) return Results.Unauthorized();
var isAdmin = await EndpointHelpers.IsAdmin(ctx, db, config);
var isAdmin = await EndpointHelpers.IsAdmin(ctx, db);
var phase = await EndpointHelpers.GetPhase(db, player.Id);
if (!isAdmin && phase != Phase.Suggest)
@@ -138,10 +138,10 @@ public static class SuggestEndpoints
return Results.NoContent();
});
group.MapPut("/{id:int}", async (int id, [FromBody] SuggestionRequest request, HttpContext ctx, AppDbContext db, IConfiguration config, IHttpClientFactory http) =>
group.MapPut("/{id:int}", async (int id, [FromBody] SuggestionRequest request, HttpContext ctx, AppDbContext db, IHttpClientFactory http) =>
{
var player = await EndpointHelpers.GetAuthenticatedPlayer(ctx, db);
var isAdmin = await EndpointHelpers.IsAdmin(ctx, db, config);
var isAdmin = await EndpointHelpers.IsAdmin(ctx, db);
if (!isAdmin)
{