public void GrantPermission(string mObject, string mOperation, string[] mRoles)
{
if (_App == null)
{
return;
}
string HQL = "from role r where r.AppID = :AppID AND r.name in ({0})";
string ParaStr = ":" + string.Join(",:", mRoles);
HQL = string.Format(HQL, ParaStr);
SQLParam[] paramList = new SQLParam[mRoles.Length + 1];
paramList[0] = new SQLParam("AppID", _App.AppID);
for (int i = 0; i < mRoles.Length; i++)
{
paramList[i + 1] = new SQLParam(mRoles[i], mRoles[i]);
}
List <role> RoleLst = RoleSrv.GetbyHQuery(HQL, paramList);
if (RoleLst == null || RoleLst.Count == 0)
{
return;
}
//Grant permission
permission TempPermission = PermissionSrv.GetPermission(mObject, mOperation, _App.AppID);
if (TempPermission == null)
{
objectRbac tempObject = ObjectSrv.GetByName(mObject, _App.AppID);
operation tempOperation = OperationSrv.GetByName(mOperation, _App.AppID);
if (tempObject == null || tempOperation == null)
{
return;
}
TempPermission = new permission();
TempPermission.AppID = _App.AppID;
TempPermission.name = tempObject.name + ":" + tempOperation.name;
TempPermission.ObjectRBAC = tempObject;
TempPermission.Operation = tempOperation;
TempPermission.Roles = new List <role>();
foreach (role r in RoleLst)
{
TempPermission.Roles.Add(r);
}
PermissionSrv.CreateNew(TempPermission);
PermissionSrv.CommitChanges();
}
else
{
foreach (role r in RoleLst)
{
if (!TempPermission.Roles.Contains(r))
{
TempPermission.Roles.Add(r);
}
}
PermissionSrv.CommitChanges();
}
}
public void GrantPermission(objectRbac mObject, operation mOperation, role mRole)
{
role TempRole = Mapping(mRole);
if (TempRole == null)
{
throw new Exception("Role Does not exist in system.");
}
objectRbac tempObject = Mapping(mObject);
operation tempOperation = Mapping(mOperation);
//Grant permission
string hsql = "from permission per where per.ObjectRBAC = :ObjectRBAC AND per.Operation = :Operation ";
List <permission> _lst = PermissionSrv.GetbyHQuery(hsql, new SQLParam("ObjectRBAC", tempObject), new SQLParam("ObjectRBAC", tempOperation));
permission TempPermission = (_lst == null || _lst.Count == 0) ? null : _lst[0];
if (TempPermission == null)
{
TempPermission = new permission();
TempPermission.AppID = App.AppID;
TempPermission.name = tempObject.name + ":" + tempOperation.name;
TempPermission.ObjectRBAC = tempObject;
TempPermission.Operation = tempOperation;
PermissionSrv.CreateNew(TempPermission);
TempRole.Permissions.Add(TempPermission);
RoleSrv.CommitChanges();
}
else
{
if (!TempRole.Permissions.Contains(TempPermission))
{
TempRole.Permissions.Add(TempPermission);
RoleSrv.CommitChanges();
}
}
}
public ActionResult AddNewPms(ObjectPermission obpms)
{
if (ModelState.IsValid && Session["MultiType"] != null)
{
var checkPermissionInObject =
_iPMSService.Query.Where(m => m.ObjectRBAC.objectid == obpms.ObjectId)
.Select(n => n.permissionid)
.ToList();
int count = checkPermissionInObject.Count;
if (count < 8)
{
var checkname = _iPMSService.Query.FirstOrDefault(x => x.name.ToUpper() == obpms.PmsName.ToUpper());
if (checkname == null)
{
try
{
objectRbac objRb = new objectRbac();
objRb.objectid = obpms.ObjectId;
permission p = new permission();
p.AppID = 1;
p.name = obpms.PmsName.Trim();
p.Description = obpms.DesPms.Trim();
p.ObjectRBAC = objRb;
var Type_pms = new TYPE_PERMISSION();
string TYPE_PERMISSIONMULTI = Session["MultiType"].ToString();
_iPMSService.BeginTran();
_iPMSService.CreateNew(p);
Type_pms.PERMISSIONID = p.permissionid;
Type_pms.TYPE_PERMISSIONMULTI = TYPE_PERMISSIONMULTI;
Type_pms.LOAI_PERMISSION = obpms.LoaiPermission;
_ITYPE_PERMISSIONService.CreateNew(Type_pms);
_iPMSService.CommitTran();
_iLogSystemService.CreateNew(HttpContext.User.Identity.Name, "Thêm mới tác vụ ", "Thực hiện chức năng thêm mới tác vụ", Helper.GetIPAddress.GetVisitorIPAddress(), HttpContext.Request.Browser.Browser);
}
catch (Exception e)
{
_iPMSService.RolbackTran();
ViewData["EditError"] = e.Message;
}
}
else
{
ViewData["EditError"] = "Tên đã tồn tại, xin chọn tên khác!";
}
}
else
{
ViewData["EditError"] = "Một chức năng chỉ chứa tối đa 8 tác vụ, nhóm hiện đã có 8 tác vụ, vui lòng chọn chức năng khác!";
}
}
else
{
ViewData["EditError"] = "Bạn phải nhập đầy đủ thông tin";
}
Session["MultiType"] = null;
Session["MultiTypeCheckEdit"] = null;
return(PartialView("PERMISSIONPartial", GetAllPms()));
}
