nhyatt/bitwarden
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2025-05-28 14:54:50 -05:00
Code

PM-20532 - (1) Policies - Add new Policies.cs static class to avoid magic strings for policy use (2) API Startup.cs - Add send authorization policy.

Browse Source
This commit is contained in:
Jared Snider 2025-05-15 22:51:18 -04:00
parent ad5ea39e4b
commit a7275a5e6b
No known key found for this signature in database
GPG Key ID: A149DDD612516286
2 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
src/Api/Startup.cs
View File

@ -145,6 +145,14 @@ public class Startup
(c.Value.Contains(ApiScopes.Api) || c.Value.Contains(ApiScopes.ApiSecrets)) (c.Value.Contains(ApiScopes.Api) || c.Value.Contains(ApiScopes.ApiSecrets))
)); ));
}); });
config.AddPolicy(Policies.Send, configurePolicy: policy =>
{
policy.RequireAuthenticatedUser();
policy.RequireClaim(JwtClaimTypes.Scope, ApiScopes.Send);
// TODO: talk with Tools about potentially
// policy.AddRequirements(new SameSendIdRequirement());
});
}); });
services.AddScoped<AuthenticatorTokenProvider>(); services.AddScoped<AuthenticatorTokenProvider>();

8
src/Core/IdentityServer/Policies.cs Normal file
View File

@ -0,0 +1,8 @@
namespace Bit.Core.IdentityServer;
public static class Policies
{
// TODO: migrate other existing policies to use this class
public const string Send = "Send"; // [Authorize(Policy = Policies.Send)]
}