Subject Auth fixes

tibitoth · tibitoth · commit 244c8651a6a4 · 2025-07-18T14:03:07.000+02:00
diff --git a/src/Ahk.GradeManagement/Ahk.GradeManagement.Api/Controllers/CourseController.cs b/src/Ahk.GradeManagement/Ahk.GradeManagement.Api/Controllers/CourseController.cs
@@ -9,7 +9,7 @@
 
 namespace Ahk.GradeManagement.Api.Controllers;
 
-//[Authorize]
+[Authorize]
 [Route("api/courses")]
 [ApiController]
 public class CourseController(CourseService courseService)
@@ -44,7 +44,7 @@ public override async Task<CourseResponse> CreateAsync(CourseRequest requestDto)
 
     [HttpGet("{id:long}/exercises")]
     [ProducesResponseType(StatusCodes.Status200OK)]
-    //[Authorize(Policy = DemonstratorOnSubjectRequirement.PolicyName)]
+    [Authorize(Policy = DemonstratorOnSubjectRequirement.PolicyName)]
     public async Task<IEnumerable<ExerciseResponse>> GetAllExercisesByIdAsync([FromRoute] long id)
     {
         return await courseService.GetAllExercisesByIdAsync(id);
diff --git a/src/Ahk.GradeManagement/Ahk.GradeManagement.Api/Controllers/SubjectController.cs b/src/Ahk.GradeManagement/Ahk.GradeManagement.Api/Controllers/SubjectController.cs
@@ -69,8 +69,7 @@ public async Task<List<User>> AddTeacherToSubjectByIdAsync([FromRoute] long subj
     [HttpDelete("{subjectId:long}/teachers/{teacherId:long}")]
     [ProducesResponseType(StatusCodes.Status204NoContent)]
     [Authorize(Policy = TeacherOnSubjectRequirement.PolicyName)]
-    public async Task<ActionResult> DeleteTeacherFromSubjectByIdAsync([FromRoute] long subjectId,
-        [FromRoute] long teacherId)
+    public async Task<ActionResult> DeleteTeacherFromSubjectByIdAsync([FromRoute] long subjectId, [FromRoute] long teacherId)
     {
         await subjectService.DeleteTeacherFromSubjectByIdAsync(subjectId, teacherId);
         return NoContent();
diff --git a/src/Ahk.GradeManagement/Ahk.GradeManagement.Bll/Services/SubjectService.cs b/src/Ahk.GradeManagement/Ahk.GradeManagement.Bll/Services/SubjectService.cs
@@ -136,7 +136,8 @@ public async Task<SubjectResponse> CreateAsync(SubjectRequest requestDto)
             gradeManagementDbContext.SubjectTeacher.Add(new Dal.Entities.SubjectTeacher
             {
                 SubjectId = subjectEntity.SubjectId,
-                UserId = teacher.Id
+                UserId = teacher.Id,
+                Role = UserRoleOnSubject.Teacher,
             });
         }
 
@@ -186,7 +187,8 @@ public async Task<List<User>> AddTeacherToSubjectByIdAsync(long subjectId, long
         gradeManagementDbContext.SubjectTeacher.Add(new Dal.Entities.SubjectTeacher
         {
             SubjectId = subjectEntity.SubjectId,
-            UserId = teacherEntity.Id
+            UserId = teacherEntity.Id,
+            Role = UserRoleOnSubject.Teacher,
         });
 
         await gradeManagementDbContext.SaveChangesAsync();

Original file line number	Diff line number	Diff line change
`@@ -136,7 +136,8 @@ public async Task<SubjectResponse> CreateAsync(SubjectRequest requestDto)`
`136`	`136`	`gradeManagementDbContext.SubjectTeacher.Add(new Dal.Entities.SubjectTeacher`
`137`	`137`	`{`
`138`	`138`	`SubjectId = subjectEntity.SubjectId,`
`139`		`- UserId = teacher.Id`
	`139`	`+ UserId = teacher.Id,`
	`140`	`+ Role = UserRoleOnSubject.Teacher,`
`140`	`141`	`});`
`141`	`142`	`}`
`142`	`143`
`@@ -186,7 +187,8 @@ public async Task<List<User>> AddTeacherToSubjectByIdAsync(long subjectId, long`
`186`	`187`	`gradeManagementDbContext.SubjectTeacher.Add(new Dal.Entities.SubjectTeacher`
`187`	`188`	`{`
`188`	`189`	`SubjectId = subjectEntity.SubjectId,`
`189`		`- UserId = teacherEntity.Id`
	`190`	`+ UserId = teacherEntity.Id,`
	`191`	`+ Role = UserRoleOnSubject.Teacher,`
`190`	`192`	`});`
`191`	`193`
`192`	`194`	`await gradeManagementDbContext.SaveChangesAsync();`