9c3bc4a5c0
* Fix FIXMEs * Bring AuthorizationPolicies.DenyLocalLoginIfConfigured authz policy to an action level as it doesn't apply to all * Remove unnecessary policy * Remove AuthorizationPolicies.DenyLocalLoginIfConfigured from base and apply to specific controllers * Fix comment * AllowAnonymous as it doesn't get it from the base anymore * Reorder --------- Co-authored-by: Elitsa <elm@umbraco.dk>
33 lines
1.6 KiB
C#
33 lines
1.6 KiB
C#
using Microsoft.AspNetCore.Http;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Umbraco.Cms.Api.Management.Routing;
|
|
using Umbraco.Cms.Core.Models.Membership;
|
|
using Umbraco.Cms.Core.Services.OperationStatus;
|
|
|
|
namespace Umbraco.Cms.Api.Management.Controllers.Security;
|
|
|
|
[VersionedApiBackOfficeRoute("security")]
|
|
[ApiExplorerSettings(GroupName = "Security")]
|
|
public abstract class SecurityControllerBase : ManagementApiControllerBase
|
|
{
|
|
protected IActionResult UserOperationStatusResult(UserOperationStatus status, ErrorMessageResult? errorMessageResult = null) =>
|
|
OperationStatusResult(status, problemDetailsBuilder => status switch
|
|
{
|
|
UserOperationStatus.UserNotFound => NotFound(problemDetailsBuilder
|
|
.WithTitle("The user was not found")
|
|
.WithDetail("The specified user was not found.")
|
|
.Build()),
|
|
UserOperationStatus.InvalidPasswordResetToken => BadRequest(problemDetailsBuilder
|
|
.WithTitle("The password reset token was invalid")
|
|
.WithDetail("The specified password reset token was either used already or wrong.")
|
|
.Build()),
|
|
UserOperationStatus.UnknownFailure => BadRequest(problemDetailsBuilder
|
|
.WithTitle("Unknown failure")
|
|
.WithDetail(errorMessageResult?.Error?.ErrorMessage ?? "The error was unknown")
|
|
.Build()),
|
|
_ => StatusCode(StatusCodes.Status500InternalServerError, problemDetailsBuilder
|
|
.WithTitle("Unknown user operation status.")
|
|
.Build()),
|
|
});
|
|
}
|