public ActionResult Index() { if (!IsAuthoriedHost.checkAuthorize()) { return(RedirectToAction("ApplicationClosed", "ErrorController")); } return(View()); }
// // GET: /Account/Login // [AccessDeniedAuthorizeattribute(ActionName = "Access")] public ActionResult Login(string returnUrl) { ViewBag.ReturnUrl = returnUrl; if (!IsAuthoriedHost.checkAuthorize()) { return(RedirectToAction("ApplicationClosed", "ErrorController")); } return(View()); }
public override void OnAuthorization(AuthorizationContext filterContext) { //Non Authorize: base.OnAuthorization(filterContext); if (!IsAuthoriedHost.checkAuthorize()) { filterContext.Result = new RedirectResult("~/ErrorController/ApplicationClosed"); return; } if (filterContext.Result is HttpUnauthorizedResult) { filterContext.Result = new RedirectResult("~/ErrorController/NonAuthorize"); } else { string CurrentUserId = HttpContext.Current.User.Identity.GetUserId(); string userRoleName = db.Users.Find(CurrentUserId).RoleName; bool IsMasterD = false; IsMasterD = db.Users.Find(CurrentUserId).IsDefaultMaster; string UserRoleId = db.Roles.Where(a => a.Name.Equals(userRoleName)).FirstOrDefault().Id; if (ActionName.Equals("DashBoard")) { ApplicationUser user = db.Users.Find(CurrentUserId); if (user.LockoutEnabled == true) { filterContext.Result = new RedirectResult("~/ErrorController/AccountLockout"); } // return; } else { //Lock Account ApplicationUser user = db.Users.Find(CurrentUserId); if (user.LockoutEnabled == true) { filterContext.Result = new RedirectResult("~/ErrorController/AccountLockout"); } else { List <int> PermissionRoleActive = db.PermissionRoles.Where(a => a.RoleId.Equals(UserRoleId) && a.Is_Active == true).Select(a => a.PermissionId).ToList(); List <int> NonActiveUserPermissions = db.PermissionUsers.Where(a => a.UserId.Equals(CurrentUserId) && a.Is_Active == false).Select(a => a.PermissionId).ToList(); List <int> ActiveUserPermissions = db.PermissionUsers.Where(a => a.UserId.Equals(CurrentUserId) && a.Is_Active == true).Select(a => a.PermissionId).ToList(); List <int> UserPermissons = PermissionRoleActive.Except(NonActiveUserPermissions).ToList(); UserPermissons = UserPermissons.Union(ActiveUserPermissions).ToList(); List <string> PermissionsAction = db.Permissions.Where(a => UserPermissons.Contains(a.Id)).Select(a => a.Action).ToList(); if (!PermissionsAction.Contains(ActionName)) { filterContext.Result = new RedirectResult("~/ErrorController/AccessDenied"); } } } } // } }