First pass at application server level authorization support.

walterpinson · walterpinson · commit 20c89a4d3b48 · 2017-12-21T17:04:59.000-05:00
diff --git a/src/Infrastructure.Server/NoteTaker.cs b/src/Infrastructure.Server/NoteTaker.cs
@@ -37,7 +37,7 @@ IMapper mapper
         // Work with notes with regard for categories.
         // In esseence these notes will be stored in the context of default category.
 
-        public NoteDto TakeNote(NewNoteMessage newNoteMessage)
+        public NoteDto TakeNote(SecurityContext securityContext, NewNoteMessage newNoteMessage)
         {
             var category = GetDefaultCategory();
 
@@ -47,7 +47,7 @@ public NoteDto TakeNote(NewNoteMessage newNoteMessage)
             return _mapper.Map<NoteDto>(note);
         }
 
-        public NoteDto ReadNote(Guid noteId)
+        public NoteDto ReadNote(SecurityContext securityContext, Guid noteId)
         {
             var category = GetDefaultCategory();
 
@@ -56,15 +56,15 @@ public NoteDto ReadNote(Guid noteId)
             return _mapper.Map<NoteDto>(note);
         }
 
-        public void RemoveNote(Guid noteId)
+        public void RemoveNote(SecurityContext securityContext, Guid noteId)
         {
             var category = GetDefaultCategory();
 
             category.RemoveNote(noteId);
             _categoryRepository.Save(category);
         }
 
-        public IList<NoteDto> ListNotes()
+        public IList<NoteDto> ListNotes(SecurityContext securityContext)
         {
             var category = GetDefaultCategory();
 
@@ -76,15 +76,15 @@ public IList<NoteDto> ListNotes()
         //
         // Work with categories
 
-        public IList<CategoryDto> ListCategories()
+        public IList<CategoryDto> ListCategories(SecurityContext securityContext)
         {
             var categories = _categoryRepository.GetAll();
             if (null == categories) throw new NotFoundException("No Categories found.");
 
             return _mapper.Map<IList<CategoryDto>>(categories);
         }
 
-        public CategoryDto CreateNewCategory(NewCategoryMessage newCategoryMessage)
+        public CategoryDto CreateNewCategory(SecurityContext securityContext, NewCategoryMessage newCategoryMessage)
         {
             if (newCategoryMessage == null)
             {
@@ -102,7 +102,7 @@ public CategoryDto CreateNewCategory(NewCategoryMessage newCategoryMessage)
             return _mapper.Map<CategoryDto>(category);
         }
 
-        public CategoryDto RenameCategory(Guid categoryId, string newCategoryName)
+        public CategoryDto RenameCategory(SecurityContext securityContext, Guid categoryId, string newCategoryName)
         {
             if (string.IsNullOrEmpty(newCategoryName))
             {
@@ -124,22 +124,22 @@ public CategoryDto RenameCategory(Guid categoryId, string newCategoryName)
             return _mapper.Map<CategoryDto>(category);
         }
 
-        public CategoryDto GetCategoryDetail(Guid categoryId)
+        public CategoryDto GetCategoryDetail(SecurityContext securityContext, Guid categoryId)
         {
             var category = _categoryRepository.Get(categoryId);
             if (null == category) throw new NotFoundException("Category not found.");
 
             return _mapper.Map<CategoryDto>(category);
         }
 
-        public void RemoveCategory(Guid categoryId)
+        public void RemoveCategory(SecurityContext securityContext, Guid categoryId)
         {
             throw new NotImplementedException();
         }
 
         // Work with categorized notes
         
-        public CategoryDto RemoveCategorizedNote(Guid categoryId, Guid noteId)
+        public CategoryDto RemoveCategorizedNote(SecurityContext securityContext, Guid categoryId, Guid noteId)
         {
             var category = _categoryRepository.Get(categoryId);
             if (null == category) throw new NotFoundException("Category not found.");
@@ -156,7 +156,7 @@ public CategoryDto RemoveCategorizedNote(Guid categoryId, Guid noteId)
             return _mapper.Map<CategoryDto>(category);
         }
 
-        public NoteDto TakeCategorizedNote(Guid categoryId, NewNoteMessage newNoteMessage)
+        public NoteDto TakeCategorizedNote(SecurityContext securityContext, Guid categoryId, NewNoteMessage newNoteMessage)
         {
             if (newNoteMessage == null)
             {
@@ -171,13 +171,13 @@ public NoteDto TakeCategorizedNote(Guid categoryId, NewNoteMessage newNoteMessag
             return _mapper.Map<NoteDto>(note);
         }
 
-        public IList<NoteDto> ListCategorizedNotes(Guid categoryId)
+        public IList<NoteDto> ListCategorizedNotes(SecurityContext securityContext, Guid categoryId)
         {
             var category = GetCategory(categoryId);
             return _mapper.Map<IList<NoteDto>>(category.Notes);
         }
 
-        public NoteDto ReadCategorizedNote(Guid categoryId, Guid noteId)
+        public NoteDto ReadCategorizedNote(SecurityContext securityContext, Guid categoryId, Guid noteId)
         {
             var category = GetCategory(categoryId);
             var note = category.RevealNote(noteId);
diff --git a/src/Infrastructure.Server/Registrar.cs b/src/Infrastructure.Server/Registrar.cs
@@ -6,22 +6,22 @@ namespace CompanyName.Notebook.NoteTaking.Infrastructure.Server
 
     public class Registrar : IRegistrar
     {
-        public SubscriberDto Subscribe(string emailAddress)
+        public SubscriberDto Subscribe(SecurityContext securityContext, string emailAddress)
         {
             throw new NotImplementedException();
         }
 
-        public SubscriberDto Subscribe(Guid categoryId, string emailAddress)
+        public SubscriberDto Subscribe(SecurityContext securityContext, Guid categoryId, string emailAddress)
         {
             throw new NotImplementedException();
         }
 
-        public void Unsubscribe(Guid subscriberId)
+        public void Unsubscribe(SecurityContext securityContext, Guid subscriberId)
         {
             throw new NotImplementedException();
         }
 
-        public void Unsubscribe(Guid categoryId, Guid subscriberId)
+        public void Unsubscribe(SecurityContext securityContext, Guid categoryId, Guid subscriberId)
         {
             throw new NotImplementedException();
         }
diff --git a/src/Infrastructure.WebApi/Controllers/v1/Bases/NoteBookBaseController.cs b/src/Infrastructure.WebApi/Controllers/v1/Bases/NoteBookBaseController.cs
@@ -0,0 +1,24 @@
+namespace CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Controllers.v1.Bases
+{
+    using System;
+    using CompanyName.Notebook.NoteTaking.Core.Application.Messages;
+    using Microsoft.AspNetCore.Mvc;
+
+    public abstract class NoteBookBaseController : Controller
+    {
+        protected SecurityContext SecurityContext
+        {
+            get {
+                var securityContext = new SecurityContext
+                {
+                    UserId = User.Identity.Name,
+                    Token = HttpContext.Request.Headers["Authorization"].ToString().Split(' ')[1],
+                    ApiRoute = HttpContext.Request.Path + HttpContext.Request.QueryString,
+                    HttpAction = HttpContext.Request.Method
+                };
+
+                return securityContext;
+            }
+        }
+    }
+}
diff --git a/src/Infrastructure.WebApi/Controllers/v1/CategoriesController.cs b/src/Infrastructure.WebApi/Controllers/v1/CategoriesController.cs
@@ -4,12 +4,13 @@ namespace CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Controllers.v1
     using System.Collections.Generic;
     using CompanyName.Notebook.NoteTaking.Core.Application.Messages;
     using CompanyName.Notebook.NoteTaking.Core.Application.Services;
+    using CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Controllers.v1.Bases;
     using CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Validators;
     using Microsoft.AspNetCore.Mvc;
     using Microsoft.Extensions.Logging;
 
     [Route("api/v1/[controller]")]
-    public class CategoriesController : Controller
+    public class CategoriesController : NoteBookBaseController
     {
         private ILogger _logger;
         private readonly INoteTaker _noteTaker;
@@ -32,7 +33,7 @@ public CategoriesController(
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Get()
         {
-            var categoryDtos =  _noteTaker.ListCategories();
+            var categoryDtos =  _noteTaker.ListCategories(SecurityContext);
             return Ok(categoryDtos);
         }
 
@@ -48,7 +49,7 @@ public IActionResult Get()
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Get(Guid id)
         {
-            var categoryDto = _noteTaker.GetCategoryDetail(id);
+            var categoryDto = _noteTaker.GetCategoryDetail(SecurityContext, id);
             return Ok(categoryDto);
         }
 
@@ -65,7 +66,7 @@ public IActionResult Get(Guid id)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Post([FromBody]NewCategoryMessage newCategoryMessage)
         {
-            var categoryDto = _noteTaker.CreateNewCategory(newCategoryMessage);
+            var categoryDto = _noteTaker.CreateNewCategory(SecurityContext, newCategoryMessage);
             return CreatedAtAction("Get", new { id = categoryDto.Id }, categoryDto);
         }
 
@@ -81,7 +82,7 @@ public IActionResult Post([FromBody]NewCategoryMessage newCategoryMessage)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Put(Guid id, [FromBody]CategoryDto updatedCategory)
         {
-            var categoryDto = _noteTaker.RenameCategory(id, updatedCategory.Name);
+            var categoryDto = _noteTaker.RenameCategory(SecurityContext, id, updatedCategory.Name);
             return CreatedAtAction("Get", new { id = categoryDto.Id }, categoryDto);
         }
 
@@ -96,7 +97,7 @@ public IActionResult Put(Guid id, [FromBody]CategoryDto updatedCategory)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Delete(Guid id)
         {
-            _noteTaker.RemoveCategory(id);
+            _noteTaker.RemoveCategory(SecurityContext, id);
             return NoContent();
         }
 
@@ -112,7 +113,7 @@ public IActionResult Delete(Guid id)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult GetNotesFromCategory(Guid id)
         {
-            var noteDtos =_noteTaker.ListCategorizedNotes(id);
+            var noteDtos =_noteTaker.ListCategorizedNotes(SecurityContext, id);
             return Ok(noteDtos);
         }
 
@@ -129,7 +130,7 @@ public IActionResult GetNotesFromCategory(Guid id)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult CreateNoteInCategory(Guid id, [FromBody]NewNoteMessage newNoteMessage)
         {
-            var noteDto =_noteTaker.TakeCategorizedNote(id, newNoteMessage);
+            var noteDto =_noteTaker.TakeCategorizedNote(SecurityContext, id, newNoteMessage);
             return CreatedAtRoute("ReadCategorizedNote", new { noteId = noteDto.Id }, noteDto);
         }
 
@@ -146,7 +147,7 @@ public IActionResult CreateNoteInCategory(Guid id, [FromBody]NewNoteMessage newN
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult GetNoteFromCategory(Guid id, Guid noteId)
         {
-            var noteDto =_noteTaker.ReadCategorizedNote(id, noteId);
+            var noteDto =_noteTaker.ReadCategorizedNote(SecurityContext, id, noteId);
             return Ok(noteDto);
         }
 
@@ -163,7 +164,7 @@ public IActionResult GetNoteFromCategory(Guid id, Guid noteId)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult DeleteCategorizedNote(Guid id, Guid noteId)
         {
-            _noteTaker.RemoveCategorizedNote(id, noteId);
+            _noteTaker.RemoveCategorizedNote(SecurityContext, id, noteId);
             return NoContent();
         }
 
diff --git a/src/Infrastructure.WebApi/Controllers/v1/NotesController.cs b/src/Infrastructure.WebApi/Controllers/v1/NotesController.cs
@@ -4,12 +4,13 @@ namespace CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Controllers.v1
     using System.Collections.Generic;
     using CompanyName.Notebook.NoteTaking.Core.Application.Messages;
     using CompanyName.Notebook.NoteTaking.Core.Application.Services;
+    using CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Controllers.v1.Bases;
     using CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Validators;
     using Microsoft.AspNetCore.Mvc;
     using Microsoft.Extensions.Logging;
 
     [Route("api/v1/[controller]")]
-    public class NotesController : Controller
+    public class NotesController : NoteBookBaseController
     {
         private ILogger _logger;
         private readonly INoteTaker _noteTaker;
@@ -32,7 +33,7 @@ public NotesController(
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Get()
         {
-            var noteDtos =_noteTaker.ListNotes();
+            var noteDtos =_noteTaker.ListNotes(SecurityContext);
             return Ok(noteDtos);
         }
 
@@ -48,7 +49,7 @@ public IActionResult Get()
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult GetNote(Guid id)
         {
-            var noteDto = _noteTaker.ReadNote(id);
+            var noteDto = _noteTaker.ReadNote(SecurityContext, id);
             return Ok(noteDto);
         }
 
@@ -65,7 +66,7 @@ public IActionResult GetNote(Guid id)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Post([FromBody]NewNoteMessage newNoteMessage)
         {
-            var noteDto = _noteTaker.TakeNote(newNoteMessage);
+            var noteDto = _noteTaker.TakeNote(SecurityContext, newNoteMessage);
             return CreatedAtRoute("GetNote", new { id = noteDto.Id }, noteDto);
         }
 
@@ -80,7 +81,7 @@ public IActionResult Post([FromBody]NewNoteMessage newNoteMessage)
         [ProducesResponseType(typeof(BadRequestResult), 400)]
         public IActionResult Delete(Guid id)
         {
-            _noteTaker.RemoveNote(id);
+            _noteTaker.RemoveNote(SecurityContext, id);
             return NoContent();
         }
     }
diff --git a/test/Test.Unit.Infrastructure.WebApi/Controllers/CategoriesControllerTester.cs b/test/Test.Unit.Infrastructure.WebApi/Controllers/CategoriesControllerTester.cs
diff --git a/test/Test.Unit.Infrastructure.WebApi/Controllers/NotesControllerTester.cs b/test/Test.Unit.Infrastructure.WebApi/Controllers/NotesControllerTester.cs

Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@ IMapper mapper`
`37`	`37`	`// Work with notes with regard for categories.`
`38`	`38`	`// In esseence these notes will be stored in the context of default category.`
`39`	`39`
`40`		`- public NoteDto TakeNote(NewNoteMessage newNoteMessage)`
	`40`	`+ public NoteDto TakeNote(SecurityContext securityContext, NewNoteMessage newNoteMessage)`
`41`	`41`	`{`
`42`	`42`	`var category = GetDefaultCategory();`
`43`	`43`
`@@ -47,7 +47,7 @@ public NoteDto TakeNote(NewNoteMessage newNoteMessage)`
`47`	`47`	`return _mapper.Map<NoteDto>(note);`
`48`	`48`	`}`
`49`	`49`
`50`		`- public NoteDto ReadNote(Guid noteId)`
	`50`	`+ public NoteDto ReadNote(SecurityContext securityContext, Guid noteId)`
`51`	`51`	`{`
`52`	`52`	`var category = GetDefaultCategory();`
`53`	`53`
`@@ -56,15 +56,15 @@ public NoteDto ReadNote(Guid noteId)`
`56`	`56`	`return _mapper.Map<NoteDto>(note);`
`57`	`57`	`}`
`58`	`58`
`59`		`- public void RemoveNote(Guid noteId)`
	`59`	`+ public void RemoveNote(SecurityContext securityContext, Guid noteId)`
`60`	`60`	`{`
`61`	`61`	`var category = GetDefaultCategory();`
`62`	`62`
`63`	`63`	`category.RemoveNote(noteId);`
`64`	`64`	`_categoryRepository.Save(category);`
`65`	`65`	`}`
`66`	`66`
`67`		`- public IList<NoteDto> ListNotes()`
	`67`	`+ public IList<NoteDto> ListNotes(SecurityContext securityContext)`
`68`	`68`	`{`
`69`	`69`	`var category = GetDefaultCategory();`
`70`	`70`
`@@ -76,15 +76,15 @@ public IList<NoteDto> ListNotes()`
`76`	`76`	`//`
`77`	`77`	`// Work with categories`
`78`	`78`
`79`		`- public IList<CategoryDto> ListCategories()`
	`79`	`+ public IList<CategoryDto> ListCategories(SecurityContext securityContext)`
`80`	`80`	`{`
`81`	`81`	`var categories = _categoryRepository.GetAll();`
`82`	`82`	`if (null == categories) throw new NotFoundException("No Categories found.");`
`83`	`83`
`84`	`84`	`return _mapper.Map<IList<CategoryDto>>(categories);`
`85`	`85`	`}`
`86`	`86`
`87`		`- public CategoryDto CreateNewCategory(NewCategoryMessage newCategoryMessage)`
	`87`	`+ public CategoryDto CreateNewCategory(SecurityContext securityContext, NewCategoryMessage newCategoryMessage)`
`88`	`88`	`{`
`89`	`89`	`if (newCategoryMessage == null)`
`90`	`90`	`{`
`@@ -102,7 +102,7 @@ public CategoryDto CreateNewCategory(NewCategoryMessage newCategoryMessage)`
`102`	`102`	`return _mapper.Map<CategoryDto>(category);`
`103`	`103`	`}`
`104`	`104`
`105`		`- public CategoryDto RenameCategory(Guid categoryId, string newCategoryName)`
	`105`	`+ public CategoryDto RenameCategory(SecurityContext securityContext, Guid categoryId, string newCategoryName)`
`106`	`106`	`{`
`107`	`107`	`if (string.IsNullOrEmpty(newCategoryName))`
`108`	`108`	`{`
`@@ -124,22 +124,22 @@ public CategoryDto RenameCategory(Guid categoryId, string newCategoryName)`
`124`	`124`	`return _mapper.Map<CategoryDto>(category);`
`125`	`125`	`}`
`126`	`126`
`127`		`- public CategoryDto GetCategoryDetail(Guid categoryId)`
	`127`	`+ public CategoryDto GetCategoryDetail(SecurityContext securityContext, Guid categoryId)`
`128`	`128`	`{`
`129`	`129`	`var category = _categoryRepository.Get(categoryId);`
`130`	`130`	`if (null == category) throw new NotFoundException("Category not found.");`
`131`	`131`
`132`	`132`	`return _mapper.Map<CategoryDto>(category);`
`133`	`133`	`}`
`134`	`134`
`135`		`- public void RemoveCategory(Guid categoryId)`
	`135`	`+ public void RemoveCategory(SecurityContext securityContext, Guid categoryId)`
`136`	`136`	`{`
`137`	`137`	`throw new NotImplementedException();`
`138`	`138`	`}`
`139`	`139`
`140`	`140`	`// Work with categorized notes`
`141`	`141`
`142`		`- public CategoryDto RemoveCategorizedNote(Guid categoryId, Guid noteId)`
	`142`	`+ public CategoryDto RemoveCategorizedNote(SecurityContext securityContext, Guid categoryId, Guid noteId)`
`143`	`143`	`{`
`144`	`144`	`var category = _categoryRepository.Get(categoryId);`
`145`	`145`	`if (null == category) throw new NotFoundException("Category not found.");`
`@@ -156,7 +156,7 @@ public CategoryDto RemoveCategorizedNote(Guid categoryId, Guid noteId)`
`156`	`156`	`return _mapper.Map<CategoryDto>(category);`
`157`	`157`	`}`
`158`	`158`
`159`		`- public NoteDto TakeCategorizedNote(Guid categoryId, NewNoteMessage newNoteMessage)`
	`159`	`+ public NoteDto TakeCategorizedNote(SecurityContext securityContext, Guid categoryId, NewNoteMessage newNoteMessage)`
`160`	`160`	`{`
`161`	`161`	`if (newNoteMessage == null)`
`162`	`162`	`{`
`@@ -171,13 +171,13 @@ public NoteDto TakeCategorizedNote(Guid categoryId, NewNoteMessage newNoteMessag`
`171`	`171`	`return _mapper.Map<NoteDto>(note);`
`172`	`172`	`}`
`173`	`173`
`174`		`- public IList<NoteDto> ListCategorizedNotes(Guid categoryId)`
	`174`	`+ public IList<NoteDto> ListCategorizedNotes(SecurityContext securityContext, Guid categoryId)`
`175`	`175`	`{`
`176`	`176`	`var category = GetCategory(categoryId);`
`177`	`177`	`return _mapper.Map<IList<NoteDto>>(category.Notes);`
`178`	`178`	`}`
`179`	`179`
`180`		`- public NoteDto ReadCategorizedNote(Guid categoryId, Guid noteId)`
	`180`	`+ public NoteDto ReadCategorizedNote(SecurityContext securityContext, Guid categoryId, Guid noteId)`
`181`	`181`	`{`
`182`	`182`	`var category = GetCategory(categoryId);`
`183`	`183`	`var note = category.RevealNote(noteId);`
Original file line number	Diff line number	Diff line change
`@@ -6,22 +6,22 @@ namespace CompanyName.Notebook.NoteTaking.Infrastructure.Server`
`6`	`6`
`7`	`7`	`public class Registrar : IRegistrar`
`8`	`8`	`{`
`9`		`- public SubscriberDto Subscribe(string emailAddress)`
	`9`	`+ public SubscriberDto Subscribe(SecurityContext securityContext, string emailAddress)`
`10`	`10`	`{`
`11`	`11`	`throw new NotImplementedException();`
`12`	`12`	`}`
`13`	`13`
`14`		`- public SubscriberDto Subscribe(Guid categoryId, string emailAddress)`
	`14`	`+ public SubscriberDto Subscribe(SecurityContext securityContext, Guid categoryId, string emailAddress)`
`15`	`15`	`{`
`16`	`16`	`throw new NotImplementedException();`
`17`	`17`	`}`
`18`	`18`
`19`		`- public void Unsubscribe(Guid subscriberId)`
	`19`	`+ public void Unsubscribe(SecurityContext securityContext, Guid subscriberId)`
`20`	`20`	`{`
`21`	`21`	`throw new NotImplementedException();`
`22`	`22`	`}`
`23`	`23`
`24`		`- public void Unsubscribe(Guid categoryId, Guid subscriberId)`
	`24`	`+ public void Unsubscribe(SecurityContext securityContext, Guid categoryId, Guid subscriberId)`
`25`	`25`	`{`
`26`	`26`	`throw new NotImplementedException();`
`27`	`27`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,12 +4,13 @@ namespace CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Controllers.v1`
`4`	`4`	`using System.Collections.Generic;`
`5`	`5`	`using CompanyName.Notebook.NoteTaking.Core.Application.Messages;`
`6`	`6`	`using CompanyName.Notebook.NoteTaking.Core.Application.Services;`
	`7`	`+ using CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Controllers.v1.Bases;`
`7`	`8`	`using CompanyName.Notebook.NoteTaking.Infrastructure.WebApi.Validators;`
`8`	`9`	`using Microsoft.AspNetCore.Mvc;`
`9`	`10`	`using Microsoft.Extensions.Logging;`
`10`	`11`
`11`	`12`	`[Route("api/v1/[controller]")]`
`12`		`- public class CategoriesController : Controller`
	`13`	`+ public class CategoriesController : NoteBookBaseController`
`13`	`14`	`{`
`14`	`15`	`private ILogger _logger;`
`15`	`16`	`private readonly INoteTaker _noteTaker;`
`@@ -32,7 +33,7 @@ public CategoriesController(`
`32`	`33`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`33`	`34`	`public IActionResult Get()`
`34`	`35`	`{`
`35`		`- var categoryDtos = _noteTaker.ListCategories();`
	`36`	`+ var categoryDtos = _noteTaker.ListCategories(SecurityContext);`
`36`	`37`	`return Ok(categoryDtos);`
`37`	`38`	`}`
`38`	`39`
`@@ -48,7 +49,7 @@ public IActionResult Get()`
`48`	`49`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`49`	`50`	`public IActionResult Get(Guid id)`
`50`	`51`	`{`
`51`		`- var categoryDto = _noteTaker.GetCategoryDetail(id);`
	`52`	`+ var categoryDto = _noteTaker.GetCategoryDetail(SecurityContext, id);`
`52`	`53`	`return Ok(categoryDto);`
`53`	`54`	`}`
`54`	`55`
`@@ -65,7 +66,7 @@ public IActionResult Get(Guid id)`
`65`	`66`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`66`	`67`	`public IActionResult Post([FromBody]NewCategoryMessage newCategoryMessage)`
`67`	`68`	`{`
`68`		`- var categoryDto = _noteTaker.CreateNewCategory(newCategoryMessage);`
	`69`	`+ var categoryDto = _noteTaker.CreateNewCategory(SecurityContext, newCategoryMessage);`
`69`	`70`	`return CreatedAtAction("Get", new { id = categoryDto.Id }, categoryDto);`
`70`	`71`	`}`
`71`	`72`
`@@ -81,7 +82,7 @@ public IActionResult Post([FromBody]NewCategoryMessage newCategoryMessage)`
`81`	`82`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`82`	`83`	`public IActionResult Put(Guid id, [FromBody]CategoryDto updatedCategory)`
`83`	`84`	`{`
`84`		`- var categoryDto = _noteTaker.RenameCategory(id, updatedCategory.Name);`
	`85`	`+ var categoryDto = _noteTaker.RenameCategory(SecurityContext, id, updatedCategory.Name);`
`85`	`86`	`return CreatedAtAction("Get", new { id = categoryDto.Id }, categoryDto);`
`86`	`87`	`}`
`87`	`88`
`@@ -96,7 +97,7 @@ public IActionResult Put(Guid id, [FromBody]CategoryDto updatedCategory)`
`96`	`97`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`97`	`98`	`public IActionResult Delete(Guid id)`
`98`	`99`	`{`
`99`		`- _noteTaker.RemoveCategory(id);`
	`100`	`+ _noteTaker.RemoveCategory(SecurityContext, id);`
`100`	`101`	`return NoContent();`
`101`	`102`	`}`
`102`	`103`
`@@ -112,7 +113,7 @@ public IActionResult Delete(Guid id)`
`112`	`113`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`113`	`114`	`public IActionResult GetNotesFromCategory(Guid id)`
`114`	`115`	`{`
`115`		`- var noteDtos =_noteTaker.ListCategorizedNotes(id);`
	`116`	`+ var noteDtos =_noteTaker.ListCategorizedNotes(SecurityContext, id);`
`116`	`117`	`return Ok(noteDtos);`
`117`	`118`	`}`
`118`	`119`
`@@ -129,7 +130,7 @@ public IActionResult GetNotesFromCategory(Guid id)`
`129`	`130`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`130`	`131`	`public IActionResult CreateNoteInCategory(Guid id, [FromBody]NewNoteMessage newNoteMessage)`
`131`	`132`	`{`
`132`		`- var noteDto =_noteTaker.TakeCategorizedNote(id, newNoteMessage);`
	`133`	`+ var noteDto =_noteTaker.TakeCategorizedNote(SecurityContext, id, newNoteMessage);`
`133`	`134`	`return CreatedAtRoute("ReadCategorizedNote", new { noteId = noteDto.Id }, noteDto);`
`134`	`135`	`}`
`135`	`136`
`@@ -146,7 +147,7 @@ public IActionResult CreateNoteInCategory(Guid id, [FromBody]NewNoteMessage newN`
`146`	`147`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`147`	`148`	`public IActionResult GetNoteFromCategory(Guid id, Guid noteId)`
`148`	`149`	`{`
`149`		`- var noteDto =_noteTaker.ReadCategorizedNote(id, noteId);`
	`150`	`+ var noteDto =_noteTaker.ReadCategorizedNote(SecurityContext, id, noteId);`
`150`	`151`	`return Ok(noteDto);`
`151`	`152`	`}`
`152`	`153`
`@@ -163,7 +164,7 @@ public IActionResult GetNoteFromCategory(Guid id, Guid noteId)`
`163`	`164`	`[ProducesResponseType(typeof(BadRequestResult), 400)]`
`164`	`165`	`public IActionResult DeleteCategorizedNote(Guid id, Guid noteId)`
`165`	`166`	`{`
`166`		`- _noteTaker.RemoveCategorizedNote(id, noteId);`
	`167`	`+ _noteTaker.RemoveCategorizedNote(SecurityContext, id, noteId);`
`167`	`168`	`return NoContent();`
`168`	`169`	`}`
`169`	`170`