From 1f8d51c5393ea2f413de4f3e05f77d360d096ff3 Mon Sep 17 00:00:00 2001
From: transtrike <transtrike@gmail.com>
Date: Sat, 23 Jan 2021 16:01:05 +0200
Subject: The beginning of role based authorization

---
 .../Configurations/Extensions/ConfigureDatabase.cs           | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'src/DevHive.Web/Configurations/Extensions')

diff --git a/src/DevHive.Web/Configurations/Extensions/ConfigureDatabase.cs b/src/DevHive.Web/Configurations/Extensions/ConfigureDatabase.cs
index 4831435..6e92a65 100644
--- a/src/DevHive.Web/Configurations/Extensions/ConfigureDatabase.cs
+++ b/src/DevHive.Web/Configurations/Extensions/ConfigureDatabase.cs
@@ -8,6 +8,8 @@ using Microsoft.AspNetCore.Builder;
 using System;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using DevHive.Data;
+using Microsoft.AspNetCore.Authorization;
+using System.Collections.Generic;
 
 namespace DevHive.Web.Configurations.Extensions
 {
@@ -19,6 +21,7 @@ namespace DevHive.Web.Configurations.Extensions
 				options.UseNpgsql(configuration.GetConnectionString("DEV")));
 
 			services.AddIdentity<User, Role>()
+				.AddRoles<Role>()
 				.AddEntityFrameworkStores<DevHiveContext>();
 
 			services.Configure<IdentityOptions>(options =>
@@ -47,6 +50,15 @@ namespace DevHive.Web.Configurations.Extensions
 					options.AuthenticationSchemes.Add(JwtBearerDefaults.AuthenticationScheme);
 					options.RequireRole("User");
 				});
+
+				options.AddPolicy("Administrator", options =>
+				{
+					options.RequireAuthenticatedUser();
+					options.AuthenticationSchemes.Add(JwtBearerDefaults.AuthenticationScheme);
+					options.RequireRole("Admin");
+				});
+
+				// options.DefaultPolicy = ;
 			});
 		}
 
-- 
cgit v1.2.3