Permission grid control, refactor permission string serialization

2019-08-30 10:05:13 -04:00
parent 3ce7f1a227
commit 88a08c8863
27 changed files with 460 additions and 216 deletions
--- a/Oqtane.Server/Security/UserPermissions.cs
+++ b/Oqtane.Server/Security/UserPermissions.cs
@ -0,0 +1,42 @@
+using Oqtane.Models;
+using Oqtane.Repository;
+using System.Linq;
+using System.Security.Claims;
+
+namespace Oqtane.Security
+{
+    public class UserPermissions : IUserPermissions
+    {
+        private readonly IPermissionRepository Permissions;
+
+        public UserPermissions(IPermissionRepository Permissions)
+        {
+            this.Permissions = Permissions;
+        }
+
+        public bool IsAuthorized(ClaimsPrincipal User, string EntityName, int EntityId, string PermissionName)
+        {
+            string permissionstrings = Permissions.EncodePermissions(EntityId, Permissions.GetPermissions(EntityName, EntityId, PermissionName).ToList());
+
+            User user = new User();
+            user.UserId = -1;
+            user.Roles = "";
+
+            if (User != null)
+            {
+                var idclaim = User.Claims.Where(item => item.Type == ClaimTypes.PrimarySid).FirstOrDefault();
+                if (idclaim != null)
+                {
+                    user.UserId = int.Parse(idclaim.Value);
+                    foreach (var claim in User.Claims.Where(item => item.Type == ClaimTypes.Role))
+                    {
+                        user.Roles += claim.Value + ";";
+                    }
+                    if (user.Roles != "") user.Roles = ";" + user.Roles;
+                }
+            }
+
+            return UserSecurity.IsAuthorized(user, PermissionName, permissionstrings);
+        }
+    }
+}