From fc7aa83513a19cf7f6bd7e2a221dab6ea089ff09 Mon Sep 17 00:00:00 2001 From: TekH Date: Wed, 10 Jun 2026 15:39:57 +0200 Subject: [PATCH] Refactor authorization policies in Program.cs Reformatted the `AddAuthorizationBuilder()` method for improved readability and consistency. Updated `AuthPolicy.Receiver` to include an additional role, `"receiver"`, in the `RequireRole` method. No functional changes were made to other policies. These changes enhance code maintainability and introduce a minor adjustment to the `AuthPolicy.Receiver` policy. --- EnvelopeGenerator.API/Program.cs | 21 +++++++++------------ 1 file changed, 9 insertions(+), 12 deletions(-) diff --git a/EnvelopeGenerator.API/Program.cs b/EnvelopeGenerator.API/Program.cs index a3da64df..b97c2d99 100644 --- a/EnvelopeGenerator.API/Program.cs +++ b/EnvelopeGenerator.API/Program.cs @@ -240,19 +240,16 @@ try }); builder.Services.AddAuthorizationBuilder() - .AddPolicy(AuthPolicy.SenderOrReceiver, policy => - policy.RequireRole(Role.Sender, Role.Receiver.Full)) - .AddPolicy(AuthPolicy.Sender, policy => - policy.RequireRole(Role.Sender)) - // Per-envelope policy: uses the dedicated EnvelopeReceiverJwt scheme so it - // never conflicts with the default JwtBearer scheme. - .AddPolicy(AuthPolicy.Receiver, policy => - policy - .AddAuthenticationSchemes(EnvelopeReceiverScheme) - .RequireAuthenticatedUser() + .AddPolicy(AuthPolicy.SenderOrReceiver, policy => policy.RequireRole(Role.Sender, Role.Receiver.Full)) + + .AddPolicy(AuthPolicy.Sender, policy => policy.RequireRole(Role.Sender)) + + .AddPolicy(AuthPolicy.Receiver, policy => policy + .AddAuthenticationSchemes(EnvelopeReceiverScheme) + .RequireAuthenticatedUser() .RequireRole(Role.Receiver.Full, "receiver")) - .AddPolicy(AuthPolicy.ReceiverTFA, policy => - policy.RequireRole(Role.Receiver.TFA)); + + .AddPolicy(AuthPolicy.ReceiverTFA, policy => policy.RequireRole(Role.Receiver.TFA)); // User manager #pragma warning disable CS0618 // Type or member is obsolete