Trabajo de ajuste en widgets y db para frontend

2025-08-29 09:54:22 -03:00
parent 55954e18a7
commit 1ed9a49a53
93 changed files with 10259 additions and 609 deletions
--- a/Elecciones-Web/src/Elecciones.Api/Security/ApiKeyAuthAttribute.cs
+++ b/Elecciones-Web/src/Elecciones.Api/Security/ApiKeyAuthAttribute.cs
@@ -0,0 +1,24 @@
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.Filters;
+
+namespace Elecciones.Api.Security;
+
+[AttributeUsage(AttributeTargets.Class | AttributeTargets.Method)]
+public class ApiKeyAuthAttribute : Attribute, IAsyncActionFilter
+{
+    private const string ApiKeyHeaderName = "X-Api-Key";
+
+    public async Task OnActionExecutionAsync(ActionExecutingContext context, ActionExecutionDelegate next)
+    {
+        var configuration = context.HttpContext.RequestServices.GetRequiredService<IConfiguration>();
+        var apiKey = configuration.GetValue<string>("ApiKey");
+
+        if (!context.HttpContext.Request.Headers.TryGetValue(ApiKeyHeaderName, out var potentialApiKey) || apiKey == null || !apiKey.Equals(potentialApiKey))
+        {
+            context.Result = new UnauthorizedResult();
+            return;
+        }
+
+        await next();
+    }
+}