allow upload routes for impersonation (#526)

app/Http/Middleware/ImpersonationMiddleware.php

@@ -58,6 +58,8 @@ class ImpersonationMiddleware
 
         'user.current',
         'local.temp',
+        'vapor.signed-storage-url',
+        'upload-file'
     ];
 
     /**
@@ -78,6 +80,7 @@ class ImpersonationMiddleware
 
         // Check that route is allowed
         $routeName = $request->route()->getName();
+        ray($routeName);
         if (!in_array($routeName, self::ALLOWED_ROUTES)) {
             return response([
                 'message' => 'Unauthorized when impersonating',

routes/api.php

@@ -330,11 +330,11 @@ Route::post(
 Route::post(
     '/vapor/signed-storage-url',
     [\App\Http\Controllers\Content\SignedStorageUrlController::class, 'store']
-)->middleware([]);
+)->name('vapor.signed-storage-url');
 Route::post(
     '/upload-file',
     [\App\Http\Controllers\Content\FileUploadController::class, 'upload']
-)->middleware([]);
+)->name('upload-file');
 
 Route::get('local/temp/{path}', function (Request $request, string $path) {
     if (!$request->hasValidSignature()) {