2020-06-01 13:43:30 +00:00
parent 12bb3da6cf
commit 281a4ad9c3
2 changed files with 7 additions and 7 deletions
--- a/server/AyaNova/Startup.cs
+++ b/server/AyaNova/Startup.cs
@@ -466,16 +466,16 @@ namespace AyaNova
                        {
                            using (AyContext ct = ServiceProviderProvider.DBContext)
                            {
-                                var DownloadUser = ct.User.AsNoTracking().SingleOrDefault(z => z.DlKey == token.ToString() && z.Active == true);
+                                var u = ct.User.AsNoTracking().SingleOrDefault(z => z.DlKey == token.ToString() && z.Active == true);
-                                if (DownloadUser != null)
+                                if (u != null)
                                {
                                    //this is necessary because they might have an expired JWT but this would just keep on working without a date check
                                    //the default is the same timespan as the jwt so it's all good
                                    var utcNow = new DateTimeOffset(DateTime.Now.ToUniversalTime(), TimeSpan.Zero);
-                                    if (DownloadUser.DlKeyExpire > utcNow.DateTime)
+                                    if (u.DlKeyExpire > utcNow.DateTime)
                                    {                                        
-                                        //TODO: extra role check required here
+                                        if (AyaNova.Api.ControllerHelpers.Authorized.HasReadFullRole(u.Roles, AyaType.Metrics))
-                                        context.Request.HttpContext.Items["AY_PROFILER_ALLOWED"] = true;
+                                            context.Request.HttpContext.Items["AY_PROFILER_ALLOWED"] = true;
                                    }
                                }
                            }
--- a/server/AyaNova/biz/BizRoles.cs
+++ b/server/AyaNova/biz/BizRoles.cs
@@ -428,7 +428,7 @@ namespace AyaNova.Biz
            //
            roles.Add(AyaType.Metrics, new BizRoleSet()
            {
-                Change = AuthorizationRoles.NoRole,
+                Change = AuthorizationRoles.OpsAdminFull,//this is to turn on extra metrics (profiler)
                ReadFullRecord = AuthorizationRoles.OpsAdminFull | AuthorizationRoles.OpsAdminLimited
            });