luticate2
/
luticate2-api
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 19 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
103 Commits
4 Branches
Tree: 15136fd711
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '15136fd711'
${ noResults }
luticate2-api/Luticate2.Auth/Middlewares/LuPermissionMiddleware.cs

LuPermissionMiddleware.cs 2.5KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. using System;

  2. using System.Reflection;

  3. using Luticate2.Auth.Attributes;

  4. using Luticate2.Auth.Interfaces.Permissions;

  5. using Luticate2.Auth.Interfaces.Users;

  6. using Luticate2.Utils.Controllers;

  7. using Luticate2.Utils.Dbo.Result;

  8. using Microsoft.AspNetCore.Authorization.Infrastructure;

  9. using Microsoft.AspNetCore.Mvc.Controllers;

  10. using Microsoft.AspNetCore.Mvc.Filters;

  11. using Microsoft.Extensions.DependencyInjection;

  12. 

  13. namespace Luticate2.Auth.Middlewares

  14. {

  15.     public class LuPermissionMiddleware : IActionFilter

  16.     {

  17.         private readonly IServiceProvider _serviceProvider;

  18.         private readonly ILuPermissionsBusiness _luPermissionsBusiness;

  19. 

  20.         public LuPermissionMiddleware(IServiceProvider serviceProvider, ILuPermissionsBusiness luPermissionsBusiness)

  21.         {

  22.             _serviceProvider = serviceProvider;

  23.             _luPermissionsBusiness = luPermissionsBusiness;

  24.         }

  25. 

  26.         public void OnActionExecuting(ActionExecutingContext context)

  27.         {

  28.             var actionDescriptor = context.ActionDescriptor as ControllerActionDescriptor;

  29.             if (actionDescriptor == null)

  30.             {

  31.                 LuResult<bool>.Error(LuStatus.InternalError,

  32.                     $"{nameof(LuPermissionMiddleware)}: actionDescriptor == null").Throw();

  33.                 return;

  34.             }

  35.             var attributes = actionDescriptor.MethodInfo.GetCustomAttributes<LuPermissionAttribute>();

  36.             foreach (var attribute in attributes)

  37.             {

  38.                 var srcAccessor = _serviceProvider.GetService(attribute.SrcEntityAccessor) as ILuAttrEntityAccessor;

  39.                 var dstAccessor = _serviceProvider.GetService(attribute.DstEntityAccessor) as ILuAttrEntityAccessor;

  40.                 var srcEntity = srcAccessor?.GetEntity(context, attribute.Id);

  41.                 var dstEntity = dstAccessor?.GetEntity(context, attribute.Id);

  42.                 var permissionValue = _luPermissionsBusiness.GetPermissionEffectiveValue(attribute.PermissionName,

  43.                     attribute.SrcEntityType, srcEntity, attribute.DstEntityType, dstEntity).ThrowIfNotSuccess();

  44.                 if (!permissionValue.Data)

  45.                 {

  46.                     var user = _serviceProvider.GetService<ILuLoggedUserAccessor>().GetLoggedUser();

  47.                     LuResult<object>.Error(LuStatus.PermissionError,$"user: {user?.Id} {user?.Username}",

  48.                         "Permission denied").Throw();

  49.                 }

  50.             }

  51.         }

  52. 

  53.         public void OnActionExecuted(ActionExecutedContext context)

  54.         {

  55.         }

  56.     }

  57. }