feat: add IsImpresonated extension

ksavosteev · ksavosteev · commit f4c305eed5fe · 2025-02-14T14:46:23.000+02:00
diff --git a/src/VirtoCommerce.Platform.Security/Extensions/ClaimsPrincipalExtensions.cs b/src/VirtoCommerce.Platform.Security/Extensions/ClaimsPrincipalExtensions.cs
@@ -2,6 +2,7 @@
 using System.Collections.Generic;
 using System.Security.Claims;
 using OpenIddict.Abstractions;
+using VirtoCommerce.Platform.Core;
 
 namespace VirtoCommerce.Platform.Security.Extensions
 {
@@ -42,5 +43,11 @@ public static ClaimsPrincipal SetClaimWithDestinations(this ClaimsPrincipal clai
 
             return claimsPrincipal;
         }
+
+        public static bool IsImpersonated(this ClaimsPrincipal claimsPrincipal)
+        {
+            return claimsPrincipal?.HasClaim(PlatformConstants.Security.Claims.OperatorUserId) == true &&
+                claimsPrincipal?.HasClaim(PlatformConstants.Security.Claims.OperatorUserName) == true;
+        }
     }
 }
diff --git a/src/VirtoCommerce.Platform.Web/Controllers/Api/AuthorizationController.cs b/src/VirtoCommerce.Platform.Web/Controllers/Api/AuthorizationController.cs
@@ -335,6 +335,8 @@ public async Task<ActionResult> Exchange()
                     }
                 }
 
+                await HandleTokenRequest(impersonatedUser, context);
+
                 // Create a new authentication ticket, but reuse the properties stored in the
                 // authorization code/refresh token, including the scopes originally granted.
                 var ticket = await CreateTicketAsync(impersonatedUser, context);

Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,7 @@`
`2`	`2`	`using System.Collections.Generic;`
`3`	`3`	`using System.Security.Claims;`
`4`	`4`	`using OpenIddict.Abstractions;`
	`5`	`+using VirtoCommerce.Platform.Core;`
`5`	`6`
`6`	`7`	`namespace VirtoCommerce.Platform.Security.Extensions`
`7`	`8`	`{`
`@@ -42,5 +43,11 @@ public static ClaimsPrincipal SetClaimWithDestinations(this ClaimsPrincipal clai`
`42`	`43`
`43`	`44`	`return claimsPrincipal;`
`44`	`45`	`}`
	`46`	`+`
	`47`	`+ public static bool IsImpersonated(this ClaimsPrincipal claimsPrincipal)`
	`48`	`+ {`
	`49`	`+ return claimsPrincipal?.HasClaim(PlatformConstants.Security.Claims.OperatorUserId) == true &&`
	`50`	`+ claimsPrincipal?.HasClaim(PlatformConstants.Security.Claims.OperatorUserName) == true;`
	`51`	`+ }`
`45`	`52`	`}`
`46`	`53`	`}`
Original file line number	Diff line number	Diff line change
`@@ -335,6 +335,8 @@ public async Task<ActionResult> Exchange()`
`335`	`335`	`}`
`336`	`336`	`}`
`337`	`337`
	`338`	`+ await HandleTokenRequest(impersonatedUser, context);`
	`339`	`+`
`338`	`340`	`// Create a new authentication ticket, but reuse the properties stored in the`
`339`	`341`	`// authorization code/refresh token, including the scopes originally granted.`
`340`	`342`	`var ticket = await CreateTicketAsync(impersonatedUser, context);`