Update UserAccess microservice to read Employee Code from token when retreiving App token. Update dadeschools Authorization policy to work offline

2024-01-08 22:31:52 -05:00
parent 5eb9314e96
commit 073fbac743
6 changed files with 81 additions and 59 deletions
--- a/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Controllers/UsersAccessController.cs
+++ b/DamageAssesmentApi/DamageAssesment.Api.UsersAccess/Controllers/UsersAccessController.cs
@ -8,17 +8,17 @@ namespace DamageAssesment.Api.UsersAccess.Controllers
    [ApiController]
    public class UsersAccessController : ControllerBase
    {
-        private IUsersAccessProvider userAccessProvider;
+        private readonly IUsersAccessProvider userAccessProvider;

        public UsersAccessController(IUsersAccessProvider userAccessProvider)
        {
            this.userAccessProvider = userAccessProvider;
        }
-        [HttpPost("authenticate")]
+        [HttpPost("dadeschools/token")]
        public async Task<ActionResult> DadeSchoolAuthenticateAsync(UserCredentials userCredentials)
        {
            var result = await userAccessProvider.AuthenticateAsync(userCredentials.username, userCredentials.password);
-            
+
            if (result.IsSuccess)
            {
                return Ok(result.TokenResponse);
@ -26,20 +26,20 @@ namespace DamageAssesment.Api.UsersAccess.Controllers
            return Unauthorized(result.ErrorMessage);
        }

-        // [Authorize(Policy = "Dadeschools")]
-        [HttpPost("token/{employecode}")]
-        public async Task<ActionResult> AuthenticateAsync(string employecode)
+        [Authorize(Policy = "Dadeschools")]
+        [HttpGet("damageapp/token")]
+        public async Task<ActionResult> AuthenticateAsync()
        {
-              var result = await userAccessProvider.AuthenticateAsync(employecode);
-              if (result.IsSuccess)
-              {
-                  return Ok(result.TokenResponse);
-              }
-              return Unauthorized(result.ErrorMessage);
+            var result = await userAccessProvider.AuthenticateAsync();
+            if (result.IsSuccess)
+            {
+                return Ok(result.TokenResponse);
+            }
+            return Unauthorized(result.ErrorMessage);
        }

-      //  [Authorize(Policy = "Dadeschools")]
-        [HttpPost("refreshtoken")]
+        [Authorize(Policy = "Dadeschools")]
+        [HttpPost("damageapp/refreshtoken")]
        public async Task<ActionResult> RefreshTokenAsync(TokenResponse tokenResponse)
        {
            var result = await userAccessProvider.RefreshTokenAsync(tokenResponse);
@ -62,7 +62,7 @@ namespace DamageAssesment.Api.UsersAccess.Controllers
            return NoContent();
        }

-        //[Authorize(Policy = "DamageApp", Roles = "admin")]
+       // [Authorize(Policy = "DamageApp", Roles = "admin")]
        [HttpGet("users/{Id}")]
        public async Task<ActionResult> GetUsersAsync(int Id)
        {