Commit 99a11e0

and

jarvis

authored

fix: Add missing authorization to Identity endpoints (#1170)

- ChangePasswordEndpoint: Add RequireAuthorization() for logged-in users - GetUserProfileEndpoint: Add RequireAuthorization() for logged-in users - AssignUserRolesEndpoint: Add RequirePermission(Users.ManageRoles) - GetUserPermissionsEndpoint: Add RequirePermission(Users.View) - Add Users.ManageRoles permission constant These endpoints were previously accessible without proper authorization checks. Co-authored-by: jarvis <jarvis@codewithmukesh.com>

1 parent 496350f commit 99a11e0Copy full SHA for 99a11e0

0 file changed

Comments

(0)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Commit 99a11e0

File tree

0 commit comments