summaryrefslogtreecommitdiff
path: root/Controllers/TicketsController.cs
diff options
context:
space:
mode:
Diffstat (limited to 'Controllers/TicketsController.cs')
-rw-r--r--Controllers/TicketsController.cs8
1 files changed, 4 insertions, 4 deletions
diff --git a/Controllers/TicketsController.cs b/Controllers/TicketsController.cs
index 97a4a26..a8574d2 100644
--- a/Controllers/TicketsController.cs
+++ b/Controllers/TicketsController.cs
@@ -24,7 +24,7 @@ namespace BackendPIA.Controllers {
_manager = manager;
}
- [Authorize]
+ [Authorize(Policy = "ValidToken")]
[HttpGet]
public async Task<ActionResult<IEnumerable<TicketDTO>>> Index(long raffleId) {
var result = await _ticket_service.GetTickets(raffleId);
@@ -35,7 +35,7 @@ namespace BackendPIA.Controllers {
return Ok(_mapper.Map<List<TicketDTO>>(result));
}
- [Authorize]
+ [Authorize(Policy = "ValidToken")]
[HttpGet("{id:int}")]
public async Task<ActionResult<TicketDTO>> Show(long raffleId, long id) {
var result = await _ticket_service.GetTicket(raffleId, id);
@@ -46,7 +46,7 @@ namespace BackendPIA.Controllers {
return Ok(_mapper.Map<TicketDTO>(result));
}
- [Authorize]
+ [Authorize(Policy = "ValidToken")]
[HttpPost]
public async Task <ActionResult<TicketDTO>> Create(long raffleId, TicketForm form) {
string email = HttpContext.User.Claims.Where(c => c.Type.Contains("email")).First().Value;
@@ -60,7 +60,7 @@ namespace BackendPIA.Controllers {
return Ok(_mapper.Map<TicketDTO>(logic.Created));
}
- [Authorize(Roles = "Administrator")]
+ [Authorize(Roles = "Administrator", Policy = "ValidToken")]
[HttpDelete("{id:int}")]
public async Task <ActionResult> Delete(long raffleId, long id) {
bool result = await _ticket_service.DeleteTicket(raffleId, id);
generated by cgit v1.2.3 (git 2.39.1) at 2024-10-18 10:15:20 +0000