luticate2
/
luticate2-api
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 19 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
100 Commits
4 Branches
Tree: d039c7437e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd039c7437e'
${ noResults }
luticate2-api/Luticate2.Auth/Middlewares/LuPermissionMiddleware.cs

LuPermissionMiddleware.cs 2.3KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253 
  1. using System;

  2. using System.Reflection;

  3. using Luticate2.Auth.Attributes;

  4. using Luticate2.Auth.Interfaces.Permissions;

  5. using Luticate2.Auth.Interfaces.Users;

  6. using Luticate2.Utils.Controllers;

  7. using Luticate2.Utils.Dbo.Result;

  8. using Microsoft.AspNetCore.Mvc.Controllers;

  9. using Microsoft.AspNetCore.Mvc.Filters;

  10. using Microsoft.Extensions.DependencyInjection;

  11. 

  12. namespace Luticate2.Auth.Middlewares

  13. {

  14.     public class LuPermissionMiddleware : IActionFilter

  15.     {

  16.         private readonly IServiceProvider _serviceProvider;

  17.         private readonly ILuPermissionsBusiness _luPermissionsBusiness;

  18. 

  19.         public LuPermissionMiddleware(IServiceProvider serviceProvider, ILuPermissionsBusiness luPermissionsBusiness)

  20.         {

  21.             _serviceProvider = serviceProvider;

  22.             _luPermissionsBusiness = luPermissionsBusiness;

  23.         }

  24. 

  25.         public void OnActionExecuting(ActionExecutingContext context)

  26.         {

  27.             var actionDescriptor = context.ActionDescriptor as ControllerActionDescriptor;

  28.             if (actionDescriptor != null)

  29.             {

  30.                 var attributes = actionDescriptor.MethodInfo.GetCustomAttributes<LuPermissionAttribute>();

  31.                 foreach (var attribute in attributes)

  32.                 {

  33.                     var srcAccessor = _serviceProvider.GetService(attribute.SrcEntityAccessor) as ILuAttrEntityAccessor;

  34.                     var dstAccessor = _serviceProvider.GetService(attribute.DstEntityAccessor) as ILuAttrEntityAccessor;

  35.                     var srcEntity = srcAccessor?.GetEntity(context, attribute.Id);

  36.                     var dstEntity = dstAccessor?.GetEntity(context, attribute.Id);

  37.                     var permissionValue = _luPermissionsBusiness.GetPermissionEffectiveValue(attribute.PermissionName,

  38.                         attribute.SrcEntityType, srcEntity, attribute.DstEntityType, dstEntity).ThrowIfNotSuccess();

  39.                     if (!permissionValue.Data)

  40.                     {

  41.                         var user = _serviceProvider.GetService<ILuLoggedUserAccessor>().GetLoggedUser();

  42.                         LuResult<object>.Error(LuStatus.PermissionError,$"user: {user?.Id} {user?.Username}",

  43.                             "Permission denied").Throw();

  44.                     }

  45.                 }

  46.             }

  47.         }

  48. 

  49.         public void OnActionExecuted(ActionExecutedContext context)

  50.         {

  51.         }

  52.     }

  53. }