Allow AC to send magic links (#507)

* Added check for admin console.

Co-authored-by: Oleksii Holub <[email protected]>

src/Service/MagicLinks/MagicLinkService.cs

@@ -1,4 +1,3 @@
-using Microsoft.Extensions.Caching.Memory;
 using Passwordless.Common.MagicLinks.Models;
 using Passwordless.Common.Services.Mail;
 using Passwordless.Service.EventLog.Loggers;
@@ -10,7 +9,6 @@ namespace Passwordless.Service.MagicLinks;
 
 public class MagicLinkService(
     TimeProvider timeProvider,
-    IMemoryCache cache,
     ITenantStorage tenantStorage,
     IFido2Service fido2Service,
     IMailProvider mailProvider,
@@ -24,6 +22,7 @@ private async Task EnforceQuotaAsync(MagicLinkTokenRequest request)
 
         // Applications created less than 24 hours ago can only send magic links to the admin email address
         if (accountAge < TimeSpan.FromHours(24) &&
+            !IsAdminConsole(account) &&
             !account.AdminEmails.Contains(request.EmailAddress.Address, StringComparer.OrdinalIgnoreCase))
         {
             throw new ApiException(
@@ -64,6 +63,10 @@ private async Task EnforceQuotaAsync(MagicLinkTokenRequest request)
         }
     }
 
+    private static bool IsAdminConsole(PerTenant account) =>
+        string.Equals(account.Tenant, "admin", StringComparison.OrdinalIgnoreCase)
+        || string.Equals(account.Tenant, "adminconsole", StringComparison.OrdinalIgnoreCase);
+
     public async Task SendMagicLinkAsync(MagicLinkTokenRequest request)
     {
         await EnforceQuotaAsync(request);