public ProcessedRequest Process(ProcessedRequest request) { var scheduleToken = AppConfig.GetConfiguration("auth:schedule:token"); if ( string.IsNullOrEmpty(scheduleToken) || scheduleToken != request.GetRequestStr("schedule_token") ) { request.AddError(new HttpError(HttpStatusCode.Unauthorized, "Schedule token is invalid")); } return(request); }
public ProcessedRequest Process(ProcessedRequest request) { var me = UserRepository.Find(request.UserId); var entityGuid = _forcedGuid ?? request.GetRequestStr(_entityGuidParam); if (!EntityUtils.IsEntityExists(entityGuid, _entityType)) { request.AddError(new HttpError(HttpStatusCode.NotFound, $"Target {_entityType} doesn't exist")); } if (!PermissionUtils.HasEntityPermission(me, entityGuid, _entityType)) { request.AddError( new HttpError(HttpStatusCode.Forbidden, "You don't have write permissions for this " + _entityType) ); } return(request); }