Inicio Explorar Axuda
Rexistro Iniciar sesión
GreenTree
/
GreenTree.Nachtragsmanagement
2
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 8dfd04c41f
Ramas Etiquetas
GreenTree.Na...
/
GreenTree.Nachtragsmanagement.Web.Framework
/
Authorization
/
RoleAuthorizeAttribute.cs

RoleAuthorizeAttribute.cs 2.3 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. using Autofac;
    2. 

  2. using GreenTree.Nachtragsmanagement.Core;
    3. 

  3. using GreenTree.Nachtragsmanagement.Core.Authentication;
    4. 

  4. using GreenTree.Nachtragsmanagement.Services.User;
    5. 

  5. using System;
    6. 

  6. using System.Collections.Generic;
    7. 

  7. using System.Linq;
    8. 

  8. using System.Text;
    9. 

  9. using System.Threading.Tasks;
    10. 

  10. using System.Web;
    11. 

  11. using System.Web.Mvc;
    12. 

  12. 

  13. namespace GreenTree.Nachtragsmanagement.Web.Framework.Authorization
    14. 

  14. {
    15. 

  15.     public class RoleAuthorizeAttribute : AuthorizeAttribute
    16. 

  16.     {
    17. 

  17.         #region Fields
    18. 

  18. 

  19.         private readonly IAuthenticationService _authenticationService;
    20. 

  20.         private readonly IUserHelper _userHelper;
    21. 

  21.         private readonly string[] _allowedFunctions;
    22. 

  22.         private readonly bool _showNotAuthorized;
    23. 

  23. 

  24.         #endregion
    25. 

  25. 

  26.         /// <summary>
    27. 

  27.         /// Initializes a new instance of the RoleAuthorizeAttribute class
    28. 

  28.         /// </summary>
    29. 

  29.         /// <param name="showNotAuthorized">Determines if a NotAuthorized message or a login redirection is made.</param>
    30. 

  30.         /// <param name="functions">The functions needed.</param>
    31. 

  31.         public RoleAuthorizeAttribute(bool showNotAuthorized, params string[] functions)
    32. 

  32.         {
    33. 

  33.             _showNotAuthorized = showNotAuthorized;
    34. 

  34.             _allowedFunctions = functions;
    35. 

  35. 

  36.             _authenticationService = Singleton<IContainer>.Instance.Resolve<IAuthenticationService>();
    37. 

  37.             _userHelper = Singleton<IContainer>.Instance.Resolve<IUserHelper>();
    38. 

  38.         }
    39. 

  39. 

  40.         protected override bool AuthorizeCore(HttpContextBase httpContext)
    41. 

  41.         {
    42. 

  42.             var user = _userHelper.FromCookies();
    43. 

  43. 

  44.             if (user == null)
    45. 

  45.                 return false;
    46. 

  46. 

  47.             if (!_allowedFunctions.Any())
    48. 

  48.                 return true;
    49. 

  49. 

  50.             foreach (var role in user.Roles)
    51. 

  51.             {
    52. 

  52.                 foreach (var function in role.Functions)
    53. 

  53.                 {
    54. 

  54.                     var allowed = _allowedFunctions.Contains(function.Description);
    55. 

  55. 

  56.                     if (allowed)
    57. 

  57.                         return true;
    58. 

  58.                 }
    59. 

  59.             }
    60. 

  60. 

  61.             return false;
    62. 

  62.         }
    63. 

  63. 

  64.         protected override void HandleUnauthorizedRequest(AuthorizationContext filterContext)
    65. 

  65.         {
    66. 

  66.             if (!_showNotAuthorized)
    67. 

  67.                 filterContext.Result = new RedirectResult("~/login");
    68. 

  68.             else
    69. 

  69.                 filterContext.Result = new RedirectResult("~/global/notauthorized");
    70. 

  70.         }
    71. 

  71.     }
    72. 

  72. }
    73.