xTr1m/GameList
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add phase requirement filter for vote/results endpoints

Browse Source
This commit is contained in:
Frank Tovar
2026-02-05 17:13:09 +01:00
parent 8176940d18
commit ffbf4aa05a
3 changed files with 39 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
Endpoints/ResultsEndpoints.cs
View File

@@ -1,6 +1,7 @@
using GameList.Data;
using GameList.Domain;
using Microsoft.EntityFrameworkCore;
using GameList.Infrastructure;
namespace GameList.Endpoints;
@@ -8,7 +9,9 @@ public static class ResultsEndpoints
{
public static void MapResultsEndpoints(this IEndpointRouteBuilder app)
{
var group = app.MapGroup("/api/results").RequireAuthorization();
var group = app.MapGroup("/api/results")
.RequireAuthorization()
.AddEndpointFilter(new PhaseRequirementFilter(Phase.Results));
group.MapGet(
"/",

5
Endpoints/VoteEndpoints.cs
View File

@@ -3,6 +3,7 @@ using GameList.Data;
using GameList.Domain;
using Microsoft.AspNetCore.Mvc;
using Microsoft.EntityFrameworkCore;
using GameList.Infrastructure;
namespace GameList.Endpoints;
@@ -10,7 +11,9 @@ public static class VoteEndpoints
{
public static void MapVoteEndpoints(this IEndpointRouteBuilder app)
{
var group = app.MapGroup("/api/votes").RequireAuthorization();
var group = app.MapGroup("/api/votes")
.RequireAuthorization()
.AddEndpointFilter(new PhaseRequirementFilter(Phase.Vote));
group.MapGet("/mine", async (HttpContext ctx, AppDbContext db) =>
{

31
Infrastructure/PhaseRequirementFilter.cs Normal file
View File

@@ -0,0 +1,31 @@
using GameList.Data;
using GameList.Domain;
using GameList.Endpoints;
namespace GameList.Infrastructure;
public class PhaseRequirementFilter : IEndpointFilter
{
private readonly Phase _required;
public PhaseRequirementFilter(Phase required)
{
_required = required;
}
public async ValueTask<object?> InvokeAsync(EndpointFilterInvocationContext context, EndpointFilterDelegate next)
{
var httpContext = context.HttpContext;
var db = httpContext.RequestServices.GetRequiredService<AppDbContext>();
var player = await EndpointHelpers.GetAuthenticatedPlayer(httpContext, db);
if (player is null) return Results.Unauthorized();
var phase = await EndpointHelpers.GetPhase(db, player.Id);
if (phase != _required)
{
return EndpointHelpers.PhaseMismatch(_required, phase);
}
return await next(context);
}
}