Fixed incorrect auth check

equinor · Nov 15, 2024 · ac1053d · ac1053d
1 parent 5f39732
commit ac1053d
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/src/backend/api/Fusion.Resources.Api/Controllers/Requests/DepartmentRequestsController.cs b/src/backend/api/Fusion.Resources.Api/Controllers/Requests/DepartmentRequestsController.cs
@@ -37,7 +37,7 @@ public async Task<ActionResult<ApiCollection<ApiResourceAllocationRequest>>> Get
                 r.AlwaysAccessWhen().FullControl().FullControlInternal().BeTrustedApplication();
                 r.AnyOf(or =>
                 {
-                    or.BeResourceOwner(new DepartmentPath(departmentString.FullDepartment).GoToLevel(2), includeDescendants: true);
+                    or.BeResourceOwnerForDepartment(new DepartmentPath(departmentString.FullDepartment).GoToLevel(2), includeDescendants: true);
                     or.HaveOrgUnitScopedRole(DepartmentId.FromFullPath(departmentString.FullDepartment), AccessRoles.ResourceOwner);
                 });
             });
@@ -70,7 +70,7 @@ public async Task<ActionResult> OptionsDepartmentRequests([FromRoute] OrgUnitIde
                 r.AlwaysAccessWhen().FullControl().FullControlInternal().BeTrustedApplication();
                 r.AnyOf(or =>
                 {
-                    or.BeResourceOwner(new DepartmentPath(departmentString.FullDepartment).GoToLevel(2), includeDescendants: true);
+                    or.BeResourceOwnerForDepartment(new DepartmentPath(departmentString.FullDepartment).GoToLevel(2), includeDescendants: true);
                     or.HaveOrgUnitScopedRole(DepartmentId.FromFullPath(departmentString.FullDepartment), AccessRoles.ResourceOwner);
                 });
             });