From e14d99823c73e8ef0956cb39cb9c0f247a4b828b Mon Sep 17 00:00:00 2001
From: Jordan Dominion <Cyberboss@users.noreply.github.com>
Date: Mon, 23 Sep 2024 21:21:22 -0400
Subject: [PATCH] Correct GQL Authorize policies

---
 .../Security/TgsGraphQLAuthorizeAttribute.cs                     | 1 +
 .../Security/TgsGraphQLAuthorizeAttribute{TAuthority}.cs         | 1 +
 2 files changed, 2 insertions(+)

diff --git a/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute.cs b/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute.cs
index 41f7ab7f37..e03e7e6081 100644
--- a/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute.cs
+++ b/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute.cs
@@ -127,6 +127,7 @@ private TgsGraphQLAuthorizeAttribute(IEnumerable<string> roleNames)
 			var listRoles = roleNames.ToList();
 			listRoles.Add(TgsAuthorizeAttribute.UserEnabledRole);
 			Roles = [.. listRoles];
+			Apply = ApplyPolicy.Validation;
 		}
 	}
 }
diff --git a/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute{TAuthority}.cs b/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute{TAuthority}.cs
index fb890f7e92..495424073a 100644
--- a/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute{TAuthority}.cs
+++ b/src/Tgstation.Server.Host/Security/TgsGraphQLAuthorizeAttribute{TAuthority}.cs
@@ -35,6 +35,7 @@ public TgsGraphQLAuthorizeAttribute(string methodName)
 				?? throw new InvalidOperationException($"Could not find method {authorityType}.{methodName}() has no {nameof(TgsAuthorizeAttribute)}!");
 			MethodName = methodName;
 			Roles = authorizeAttribute.Roles?.Split(',', StringSplitOptions.RemoveEmptyEntries);
+			Apply = ApplyPolicy.Validation;
 		}
 	}
 }