Jonas
b2984fcf1a
Switch user admin handling from an AppUser boolean to ASP.NET Identity roles. Removed AppUser.IsAdmin and related configuration/model entries; added migration ReplaceIsAdminWithRoles to copy Users.IsAdmin=true into a persistent admin role and drop the IsAdmin column. CurrentUserResponse now exposes roles (string[]), AuthController returns ordered roles from UserManager, and IdentitySeedService now ensures the admin role exists and assigns/creates an initial admin user in that role. Program.cs registers an Admin-only policy (PolicyNames/RoleNames), adjusts cookie auth events to return 401/403 for API requests, and wires up authorization. Frontend updated to use roles: authSession normalizes roles, adds hasRole and ROLE_ADMIN, router and layout support meta.requiredRoles, and new Forbidden and AdminUsers pages/route are added. codexInfo.md updated to reflect the migration to role-based auth.
20 lines
619 B
C#
20 lines
619 B
C#
using API.Models;
|
|
using Microsoft.EntityFrameworkCore;
|
|
using Microsoft.EntityFrameworkCore.Metadata.Builders;
|
|
|
|
namespace API.Database.Configurations
|
|
{
|
|
public class AppUserConfiguration : IEntityTypeConfiguration<AppUser>
|
|
{
|
|
public void Configure(EntityTypeBuilder<AppUser> builder)
|
|
{
|
|
builder.ToTable("Users");
|
|
|
|
builder.Property(x => x.CreatedAt).IsRequired();
|
|
builder.Property(x => x.UpdatedAt).IsRequired();
|
|
builder.Property(x => x.IsActive).IsRequired();
|
|
builder.Property(x => x.MustChangePassword).IsRequired();
|
|
}
|
|
}
|
|
}
|