Change authentication for REST /server/getaasx2

If --no-security is set, an .AASX can be retrieved by getaasx2. This works together with file /connect in AASX Package Explorer.
eclipse-aaspe · Nov 12, 2020 · b7f6587 · b7f6587
1 parent 8d3bb2d
commit b7f6587
Show file tree

Hide file tree

Showing 2 changed files with 24 additions and 1 deletion.
diff --git a/src/AasxServerBlazor/Properties/launchSettings.json b/src/AasxServerBlazor/Properties/launchSettings.json
@@ -18,7 +18,7 @@
     },
     "AasxServerBlazor": {
       "commandName": "Project",
-      "commandLineArgs": "--data-path C:\\Users\\7wrmhx\\Documents\\_Standardization\\Diedrich\\test --rest --edit --connect",
+      "commandLineArgs": "--data-path C:\\Development\\AASX_DigTyp40 --rest --no-security",
       "launchBrowser": true,
       "environmentVariables": {
         "ASPNETCORE_ENVIRONMENT": "Development"

diff --git a/src/AasxServerStandardBib/AasxHttpContextHelper.cs b/src/AasxServerStandardBib/AasxHttpContextHelper.cs
@@ -2993,16 +2993,39 @@ public void EvalGetAASX2(IHttpContext context, int fileIndex)
             dynamic res = new ExpandoObject();
             int index = -1;
 
+            // check authentication
+            string accessrights = null;
+            if (withAuthentification)
+            {
+                accessrights = SecurityCheck(context, ref index);
+
+                if (accessrights == null)
+                {
+                    res.error = "You are not authorized for this operation!";
+                    SendJsonResponse(context, res);
+                    return;
+                }
+
+                res.confirm = "Authorization = " + accessrights;
+            }
+            else
+            {
+                accessrights = "readonly";
+            }
+
             Console.WriteLine("Security 5 Server: /server/getaasx2/" + fileIndex);
 
             // check authentication
+            /*
             if (!withAuthentification)
             {
                 res.error = "You are not authorized for this operation!";
                 SendJsonResponse(context, res);
                 return;
             }
             string accessrights = SecurityCheck(context, ref index);
+            */
+
             Console.WriteLine("Security 5.1 Server: Check bearer token and access rights");
             Console.WriteLine("Security 5.2 Server: Validate that bearer token is signed by session unique random");