MasterMito/work-club-manager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

WIP: AdminClubService DI fix and RLS-related changes

Browse Source
This commit is contained in:
WorkClub Automation
2026-03-19 21:36:06 +01:00
parent 04641319ce
commit 112b299b8e
7 changed files with 2344 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files
backend/WorkClub.Api/Middleware/TenantValidationMiddleware.cs
+8
View File
@@ -44,6 +44,14 @@ public class TenantValidationMiddleware
if (string.IsNullOrEmpty(clubsClaim))
{
// NEW: Skip check if user is a global admin
var realmAccess = context.User.FindFirst("realm_access")?.Value;
if (!string.IsNullOrEmpty(realmAccess) && realmAccess.Contains("\"admin\"", StringComparison.OrdinalIgnoreCase))
{
await _next(context);
return;
}
context.Response.StatusCode = StatusCodes.Status403Forbidden;
await context.Response.WriteAsJsonAsync(new { error = "User does not have clubs claim" });
return;