2021-10-18 19:24:40 +00:00
parent 921db07d3f
commit cb33d70107
1 changed files with 5 additions and 5 deletions
--- a/server/AyaNova/Controllers/UserController.cs
+++ b/server/AyaNova/Controllers/UserController.cs
@@ -55,7 +55,7 @@ namespace AyaNova.Api.Controllers
        [HttpGet("{id}")]
        public async Task<IActionResult> GetUser([FromRoute] long id)
        {
-            if (!serverState.IsOpen)
+            if (!serverState.IsOpen && UserIdFromContext.Id(HttpContext.Items) != 1)//bypass for superuser to fix fundamental problems
                return StatusCode(503, new ApiErrorResponse(serverState.ApiErrorCode, null, serverState.Reason));

            //Instantiate the business object handler
@@ -95,7 +95,7 @@ namespace AyaNova.Api.Controllers
        [HttpPut]
        public async Task<IActionResult> PutUser([FromBody] User updatedObject)
        {
-            if (!serverState.IsOpen)
+            if (!serverState.IsOpen && UserIdFromContext.Id(HttpContext.Items) != 1)//bypass for superuser to fix fundamental problems
                return StatusCode(503, new ApiErrorResponse(serverState.ApiErrorCode, null, serverState.Reason));
            if (!ModelState.IsValid)
                return BadRequest(new ApiErrorResponse(ModelState));
@@ -198,7 +198,7 @@ namespace AyaNova.Api.Controllers
        [HttpDelete("{id}")]
        public async Task<IActionResult> DeleteUser([FromRoute] long id)
        {
-            if (!serverState.IsOpen)
+            if (!serverState.IsOpen && UserIdFromContext.Id(HttpContext.Items) != 1)//bypass for superuser to fix fundamental problems
                return StatusCode(503, new ApiErrorResponse(serverState.ApiErrorCode, null, serverState.Reason));
            if (!ModelState.IsValid)
                return BadRequest(new ApiErrorResponse(ModelState));
@@ -225,7 +225,7 @@ namespace AyaNova.Api.Controllers
        [HttpGet("list")]
        public async Task<IActionResult> GetInsideUserList()
        {
-            if (!serverState.IsOpen)
+            if (!serverState.IsOpen && UserIdFromContext.Id(HttpContext.Items) != 1)//bypass for superuser to fix fundamental problems
                return StatusCode(503, new ApiErrorResponse(serverState.ApiErrorCode, null, serverState.Reason));

            if (!Authorized.HasReadFullRole(HttpContext.Items, AyaType.User))
@@ -350,7 +350,7 @@ namespace AyaNova.Api.Controllers
        public async Task<IActionResult> GetInsideStatus(long id)
        {
            //This method is used by the Client UI to determine the correct edit form to show
-            if (serverState.IsClosed)
+            if (serverState.IsClosed && UserIdFromContext.Id(HttpContext.Items) != 1)//bypass for superuser to fix fundamental problems
                return StatusCode(503, new ApiErrorResponse(serverState.ApiErrorCode, null, serverState.Reason));

            if (!Authorized.HasSelectRole(HttpContext.Items, AyaType.User))