shahondin1624/Mitgliederverwaltung
Public Access
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 16 Wiki Activity
Files
a0ad92dd47f302d5f40466c9959f089cd410f915
Mitgliederverwaltung/.plans/open/issue-211-authorization-middleware-refactor.md
T
shahondin1624 b29a268b1d Restructure .plans/ into done/ and open/ subdirectories 
- Move completed plan files to .plans/done/
- Move 18 open plan files to .plans/open/
- Update .gitignore to exclude .verified_plans temp file
- Verified all 18 open plans still describe unimplemented issues
2026-04-28 20:30:55 +02:00

2.1 KiB
Raw Blame History

Issue #211: Authorization Middleware Maintenance Burden

Problem

The AuthorizationMiddleware requires manual maintenance for each new controller and method:

  1. When adding a new admin-only controller, it must be added to the beforeController chain:

    if ($controller instanceof ImportController
    || $controller instanceof PermissionController
    || $controller instanceof AuditController
    || $controller instanceof DsgvoController
    || $controller instanceof BackupController
    // NEW: Must add here
) { ... }

  2. When adding an admin-only method, it must be added to a constant:

    private const ADMIN_METHODS_MEMBER = ['revealAllergies', 'archive'];
// NEW: Must add here

  3. When adding a read-only method, it must be added to:

    private const READ_METHODS = [
    'index', 'show', 'search', 'preview', ...
    // NEW: Must add here
];

Impact

  • Easy to forget to add a new controller/method to the right list
  • Growing maintenance burden as the app expands
  • Potential security issues if a write method is accidentally omitted
  • Violates Open/Closed Principle

Solution

Use PHP 8 attributes to declare permissions directly on controller methods:

#[Attribute]
class RequirePermission {
    public function __construct(string $level) { ... }
}

class MemberController {
    #[RequirePermission('read')]
    public function index(): JSONResponse { ... }
    
    #[RequirePermission('write')]
    public function create(): JSONResponse { ... }
    
    #[RequirePermission('admin')]
    public function revealAllergies(): JSONResponse { ... }
}

Middleware then reads attributes via reflection.

Tasks

  • Create RequirePermission attribute class
  • Add #[RequirePermission] attributes to all controller methods
  • Refactor AuthorizationMiddleware::beforeController() to use reflection
  • Remove hardcoded controller and method lists
  • Add tests to verify permission enforcement
  • Document the new attribute-based approach

Labels

  • refactoring
  • backend
  • security
  • priority:medium
  • architecture
Reference in New Issue View Git Blame Copy Permalink