Major refactoring replacing permission strings with permission collections. These changes will require extensive regression testing. These changes may include breaking changes which will need to be identified and resolved to provide backward compatibility.

2023-02-28 17:59:21 -05:00
parent c4cd1a5a54
commit 8605e3ca5a
24 changed files with 274 additions and 477 deletions
--- a/Oqtane.Client/Themes/Controls/Theme/ControlPanel.razor
+++ b/Oqtane.Client/Themes/Controls/Theme/ControlPanel.razor
@ -392,20 +392,21 @@
 					module.ModuleDefinitionName = ModuleDefinitionName;
 					module.AllPages = false;

-					List<PermissionString> permissions = UserSecurity.GetPermissionStrings(PageState.Page.Permissions);
+					var permissions = new List<Permission>();
 					if (Visibility == "view")
 					{
 						// set module view permissions to page view permissions
-						permissions.Find(p => p.PermissionName == PermissionNames.View).Permissions = permissions.Find(p => p.PermissionName == PermissionNames.View).Permissions;
+						permissions = PageState.Page.Permissions.Where(item => item.PermissionName == PermissionNames.View).ToList();
 					}
 					else
 					{
 						// set module view permissions to page edit permissions
-						permissions.Find(p => p.PermissionName == PermissionNames.View).Permissions = permissions.Find(p => p.PermissionName == PermissionNames.Edit).Permissions;
+						permissions = PageState.Page.Permissions.Where(item => item.PermissionName == PermissionNames.Edit).ToList();
 					}
-					// set entityname
+					// set entity name and permission name
 					permissions.ForEach(item => item.EntityName = EntityNames.Module);
-					module.Permissions = UserSecurity.SetPermissionStrings(permissions);
+					permissions.ForEach(item => item.PermissionName = PermissionNames.View);
+					module.Permissions = permissions;

 					module = await ModuleService.AddModuleAsync(module);
 					ModuleId = module.ModuleId.ToString();
@ -527,32 +528,17 @@
 	{
 		if (UserSecurity.IsAuthorized(PageState.User, PermissionNames.Edit, PageState.Page.Permissions))
 		{
-			List<PermissionString> permissions;
-
-			// publish/unpublish page
-			var page = PageState.Page;
-			permissions = UserSecurity.GetPermissionStrings(page.Permissions);
-			foreach (var permissionstring in permissions)
-			{
-				if (permissionstring.PermissionName == PermissionNames.View)
-				{
-					List<string> ids = permissionstring.Permissions.Split(';').ToList();
-					switch (action)
-					{
-						case "publish":
-							if (!ids.Contains(RoleNames.Everyone)) ids.Add(RoleNames.Everyone);
-							if (!ids.Contains(RoleNames.Registered)) ids.Add(RoleNames.Registered);
-							break;
-						case "unpublish":
-							ids.Remove(RoleNames.Everyone);
-							ids.Remove(RoleNames.Registered);
-							break;
-					}
-					permissionstring.Permissions = string.Join(";", ids.ToArray());
-				}
-			}
-			page.Permissions = UserSecurity.SetPermissionStrings(permissions);
-			await PageService.UpdatePageAsync(page);
+			var permissions = PageState.Page.Permissions;
+            if (!permissions.Any(item => item.PermissionName == PermissionNames.View && item.Role.Name == RoleNames.Everyone))
+            {
+				permissions.Add(new Permission(EntityNames.Page, PageState.Page.PageId, PermissionNames.View, RoleNames.Everyone, null, true));
+            }
+            if (!permissions.Any(item => item.PermissionName == PermissionNames.View && item.Role.Name == RoleNames.Registered))
+            {
+				permissions.Add(new Permission(EntityNames.Page, PageState.Page.PageId, PermissionNames.View, RoleNames.Registered, null, true));
+            }
+			PageState.Page.Permissions = permissions;
+			await PageService.UpdatePageAsync(PageState.Page);
 			NavigationManager.NavigateTo(NavigateUrl(PageState.Page.Path, true));
 		}
 	}