implementation details

ref #6

src/app.ts

@@ -3,11 +3,15 @@ import * as dotenvSafe from "dotenv-safe";
 import { createExpressServer } from "routing-controllers";
 import consola from "consola";
 import loaders from "./loaders/index";
+import authchecker from "./authchecker";
+import { ErrorHandler } from './middlewares/ErrorHandler';
 
 dotenvSafe.config();
 const PORT = process.env.APP_PORT || 4010;
 
 const app = createExpressServer({
+  authorizationChecker: authchecker,
+  middlewares: [ErrorHandler],
   development: process.env.NODE_ENV === "production",
   cors: true,
   routePrefix: "/api",

src/controllers/TrackController.ts

@@ -1,4 +1,4 @@
-import { JsonController, Param, Body, Get, Post, Put, Delete, NotFoundError, OnUndefined, NotAcceptableError } from 'routing-controllers';
+import { JsonController, Param, Body, Get, Post, Put, Delete, NotFoundError, OnUndefined, NotAcceptableError, Authorized } from 'routing-controllers';
 import { getConnectionManager, Repository } from 'typeorm';
 import { EntityFromBody } from 'typeorm-routing-controllers-extensions';
 import { OpenAPI, ResponseSchema } from 'routing-controllers-openapi';
@@ -22,6 +22,7 @@ export class TrackNotFoundError extends NotFoundError {
 }
 
 @JsonController('/tracks')
+@Authorized("TRACKS:read")
 export class TrackController {
 	private trackRepository: Repository<Track>;