fix(webapi): Mask unauthorized attachment URLs in EndUser transmission endpoints (#1890)

oskogstad · web-flow · commit f2f817b99721 · 2025-02-16T18:28:15.000+01:00
## Description EndUser transmission endpoints gives out original URLs when the user is not authorized to see them ## Related Issue(s) - #1889 ## Verification - [x] **Your** code builds clean without any errors or warnings - [x] Manual testing done (required) - [ ] Relevant automated test added (if you find this hard, leave it and we'll help out) ## Documentation - [ ] Documentation is updated (either in `docs`-directory, Altinnpedia or a separate linked PR in [altinn-studio-docs.](https://github.com/Altinn/altinn-studio-docs), if applicable)
diff --git a/src/Digdir.Domain.Dialogporten.Application/Features/V1/EndUser/DialogTransmissions/Queries/Get/GetTransmissionQuery.cs b/src/Digdir.Domain.Dialogporten.Application/Features/V1/EndUser/DialogTransmissions/Queries/Get/GetTransmissionQuery.cs
@@ -83,7 +83,7 @@ public async Task<GetTransmissionResult> Handle(GetTransmissionQuery request,
 
         if (dto.IsAuthorized) return dto;
 
-        var urls = transmission.Attachments.SelectMany(a => a.Urls).ToList();
+        var urls = dto.Attachments.SelectMany(a => a.Urls).ToList();
         foreach (var url in urls)
         {
             url.Url = Constants.UnauthorizedUri;
diff --git a/src/Digdir.Domain.Dialogporten.Application/Features/V1/EndUser/DialogTransmissions/Queries/Search/SearchTransmissionQuery.cs b/src/Digdir.Domain.Dialogporten.Application/Features/V1/EndUser/DialogTransmissions/Queries/Search/SearchTransmissionQuery.cs
@@ -1,4 +1,5 @@
 using AutoMapper;
+using Digdir.Domain.Dialogporten.Application.Common.Authorization;
 using Digdir.Domain.Dialogporten.Application.Common.ReturnTypes;
 using Digdir.Domain.Dialogporten.Application.Externals;
 using Digdir.Domain.Dialogporten.Application.Externals.AltinnAuthorization;
@@ -68,6 +69,21 @@ public async Task<SearchTransmissionResult> Handle(SearchTransmissionQuery reque
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
-        return _mapper.Map<List<TransmissionDto>>(dialog.Transmissions);
+        var dto = _mapper.Map<List<TransmissionDto>>(dialog.Transmissions);
+
+        foreach (var transmission in dto)
+        {
+            transmission.IsAuthorized = authorizationResult.HasReadAccessToDialogTransmission(transmission.AuthorizationAttribute);
+
+            if (transmission.IsAuthorized) continue;
+
+            var urls = transmission.Attachments.SelectMany(a => a.Urls).ToList();
+            foreach (var url in urls)
+            {
+                url.Url = Constants.UnauthorizedUri;
+            }
+        }
+
+        return dto;
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -83,7 +83,7 @@ public async Task<GetTransmissionResult> Handle(GetTransmissionQuery request,`
`83`	`83`
`84`	`84`	`if (dto.IsAuthorized) return dto;`
`85`	`85`
`86`		`- var urls = transmission.Attachments.SelectMany(a => a.Urls).ToList();`
	`86`	`+ var urls = dto.Attachments.SelectMany(a => a.Urls).ToList();`
`87`	`87`	`foreach (var url in urls)`
`88`	`88`	`{`
`89`	`89`	`url.Url = Constants.UnauthorizedUri;`