private void ImportAcl(IImportContext context, PC.Executors.ISCObjectOperations executor, PC.SCApplication targetApp, PC.Permissions.SCAclItem[] acls)
{
if (acls.Length > 0)
{
var container = new PC.Permissions.SCAclContainer(targetApp);
context.AppendLogFormat("正在替 {0} 合并ACL定义\r\n", targetApp.ToDescription());
var oldPermissions = PC.Adapters.SCAclAdapter.Instance.LoadByContainerID(targetApp.ID, DateTime.MinValue);
PC.Permissions.SCAclMemberCollection members = new PC.Permissions.SCAclMemberCollection();
foreach (var item in acls)
{
ImportService.Instance.WithEffectObject <PC.SchemaObjectBase>(item.MemberID, role =>
{
members.Add(item.ContainerPermission, role);
}, null);
}
if (oldPermissions != null && oldPermissions.Count > 0)
{
members.MergeChangedItems(oldPermissions);
}
container.Members.CopyFrom(members);
PC.Adapters.SCAclAdapter.Instance.Update(container);
}
}
private void ImportMembers(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations exec, SchemaObjectCollection memberObjects, SchemaObjectBase grp)
{
if (this.IncludeMembers && objectSet.HasMembership)
{
var memberRelations = objectSet.Membership.FindAll(m => m.ContainerID == grp.ID && m.Status == SchemaObjectStatus.Normal);
if (memberRelations.Count > 0 && memberObjects != null)
{
context.AppendLogFormat("正在试图添加{0}个群组成员\r\n", memberRelations.Count);
foreach (var r in memberRelations)
{
var user = (SCUser)(from m in memberObjects where m.ID == r.ID select m).FirstOrDefault();
if (user != null)
{
try
{
exec.AddUserToGroup(user, (SCGroup)grp);
context.AppendLogFormat("已经向群组{0}添加群组成员:{1}\r\n", ((SCGroup)grp).DisplayName, user.DisplayName);
}
catch (Exception ex)
{
context.AppendLogFormat("无法导入群组 {0} 的成员 {1}: {2}\r\n", ((SCGroup)grp).DisplayName, user.DisplayName, ex.Message);
}
}
else
{
context.AppendLogFormat("已跳过不存在的成员\r\n");
}
}
}
}
}
private void ImportRoles(IImportContext context, PC.Executors.ISCObjectOperations executor, Dictionary <object, object> mappings, PC.SCApplication app2, PC.SCRole[] roles)
{
if (this.IncludeRoles && roles.Length > 0)
{
context.AppendLog("正准备导入角色");
foreach (var p in roles)
{
var role2 = this.CopyMode ? AppImportAction.MakeCopy(p) : p;
mappings.Add(p, role2);
context.AppendLog("正在导入角色" + role2.ToDescription());
executor.AddRole(role2, app2);
}
}
}
private void ImportPermissions(IImportContext context, PC.Executors.ISCObjectOperations executor, Dictionary <object, object> mappings, PC.SCApplication app2, PC.SCPermission[] permissions, bool copyMode)
{
if (permissions.Length > 0)
{
context.AppendLog("正准备导入功能");
foreach (var p in permissions)
{
var permission2 = copyMode ? MakeCopy(p) : p;
mappings.Add(p, permission2);
context.AppendLog("正在导入功能" + permission2.DisplayName ?? permission2.Name);
executor.AddPermission(permission2, app2);
}
}
}
private void ImportOneGroup(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations exec, SchemaObjectCollection parentObjects, SchemaObjectCollection memberObjects, int allCount, int count, SchemaObjectBase grp)
{
if (grp.SchemaType == "Groups")
{
try
{
var summaryName = grp.Properties.GetValue <string>("Name", "未命名");
context.SetStatus(count, allCount, "正在导入对象:" + summaryName);
if (this.IncludeSelf)
{
SCRelationObject parentOrgRelation = (SCRelationObject)objectSet.Relations.Find(m => ((SCRelationObject)m).ParentSchemaType == "Organizations" && ((SCRelationObject)m).ChildSchemaType == "Groups" && ((SCRelationObject)m).ID == grp.ID);
if (parentOrgRelation == null)
{
throw new HttpException("未找到群组的父级组织");
}
var parentOrg = (SCOrganization)(parentObjects != null ? (from p in parentObjects where p.ID == parentOrgRelation.ParentID select p).FirstOrDefault() : null);
if (parentOrg == null || parentOrg.Status != SchemaObjectStatus.Normal)
{
throw new HttpException("群组的父级组织不存在或者已删除,未能导入群组。");
}
exec.AddGroup((SCGroup)grp, parentOrg);
context.AppendLog("已执行导入对象" + summaryName);
}
ImportMembers(objectSet, context, exec, memberObjects, grp);
ImportConditions(objectSet, context, grp);
}
catch (Exception ex)
{
context.AppendLog("对项的操作失败,原因是:" + ex.Message);
}
}
else
{
context.AppendLog("已跳过不是群组的项");
}
}
private void ImportRoleConditions(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations exec, PC.SCRole roleRef, PC.SCRole roleActual)
{
var conditons = (from c in objectSet.Conditions where c.OwnerID == roleRef.ID select c).ToArray();
var owner = new PC.Conditions.SCConditionOwner()
{
OwnerID = roleActual.ID,
Type = "Default"
};
foreach (var c in conditons)
{
owner.Conditions.Add(new PC.Conditions.SCCondition()
{
Description = c.Description,
Condition = c.Condition,
OwnerID = roleActual.ID,
Type = "Default"
});
}
context.AppendLogFormat("正在替角色 {0} 导入角色条件\r\n", roleActual.DisplayName);
PC.Adapters.SCConditionAdapter.Instance.UpdateConditions(owner);
}
private void ImportRoleDefinitions(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations exec, int count, int allCount, PC.SCRole role, PC.SCRole role2)
{
context.SetStatus(count, allCount, "正在查找并添加角色功能定义");
context.AppendLogFormat("正在替 {0} 查找角色功能定义\r\n", role2.ToDescription());
var permissionIds = (from p in objectSet.Relations where p.ParentID == role.ID && p.ChildSchemaType == "Permissions" select p.ID).ToArray();
var permissions = permissionIds.Length > 0 ? DbUtil.LoadObjects(permissionIds) : null;
if (permissions != null)
{
foreach (PC.SCPermission p in permissions)
{
var relation = PC.Adapters.SchemaRelationObjectAdapter.Instance.Load(role.ID, p.ID);
if (relation == null || relation.Status != SchemaObjectStatus.Normal)
{
string text = string.Format("正在替角色 {0} 指定功能 {1}\r\n", role.DisplayName ?? role.Name, p.DisplayName ?? p.Name);
context.SetStatus(count, allCount, text);
context.AppendLog(text);
exec.JoinRoleAndPermission(role, (PC.SCPermission)p);
}
}
}
}
private static void ImportRoleMembers(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations exec, PC.SCRole roleRef, PC.SCRole roleActual)
{
foreach (var m in objectSet.Membership)
{
if (m.ContainerID == roleRef.ID)
{
var objSc = PC.Adapters.SchemaObjectAdapter.Instance.Load(m.ID) as PC.SCBase;
if (objSc != null)
{
context.AppendLogFormat("正在替角色 {0} 导入角色成员 {1}\r\n", roleActual.DisplayName, objSc.DisplayName);
exec.AddMemberToRole(objSc, roleActual);
}
}
}
}
private void ImportRoleConditions(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations executor, Dictionary <object, object> mappings, PC.SCRole[] roles)
{
if (roles.Length > 0 && objectSet.HasConditions)
{
foreach (var r in roles)
{
PC.SCRole role2 = r;
if (mappings.ContainsKey(r))
{
role2 = (PC.SCRole)mappings[r];
}
var roleConditions = (from c in objectSet.Conditions where c.OwnerID == r.ID select c).ToArray();
if (roleConditions.Length > 0)
{
context.AppendLogFormat("正在替角色{0}添加条件\r\n", role2.ToDescription());
PC.Conditions.SCConditionOwner owner = new PC.Conditions.SCConditionOwner()
{
OwnerID = role2.ID,
Type = "Default"
};
foreach (var c in roleConditions)
{
owner.Conditions.Add(c);
}
PC.Adapters.SCConditionAdapter.Instance.UpdateConditions(owner);
}
}
}
}
private void ImportRoleMembers(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations executor, Dictionary <object, object> mappings, PC.SCRole[] roles)
{
if (roles.Length > 0)
{
foreach (var r in roles)
{
PC.SCRole role2 = r;
if (mappings.ContainsKey(r))
{
role2 = (PC.SCRole)mappings[r];
}
// 查找角色成员
var roleMemberIds = (from m in objectSet.Membership where m.ContainerSchemaType == "Roles" && m.ContainerID == r.ID select m.ID).ToArray();
if (roleMemberIds.Length > 0)
{
var roleMembers = DbUtil.LoadObjects(roleMemberIds);
foreach (PC.SCBase obj in roleMembers)
{
context.AppendLog("正在导入角色成员" + obj.DisplayName ?? obj.Name);
executor.AddMemberToRole(obj, role2);
}
}
}
}
}
private void ImportRolePermissions(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations executor, Dictionary <object, object> mappings, PC.SCPermission[] permissions, PC.SCRole[] roles, bool copyMode)
{
if (roles.Length > 0 && permissions.Length > 0 && objectSet.HasRelations)
{
foreach (var r in roles)
{
PC.SCRole role2 = r;
if (mappings.ContainsKey(r))
{
role2 = (PC.SCRole)mappings[r];
}
context.AppendLogFormat("正在替 {0} 查找功能定义\r\n", role2.ToDescription());
foreach (var p in permissions)
{
PC.SCPermission permission2 = p;
if (mappings.ContainsKey(p))
{
permission2 = (PC.SCPermission)mappings[p];
}
var actual = PC.Adapters.SchemaRelationObjectAdapter.Instance.Load(role2.ID, permission2.ID);
var actualHasPermission = actual != null && actual.Status == SchemaObjectStatus.Normal;
var refHasPermission = (from rr in objectSet.Relations where rr.Status == SchemaObjectStatus.Normal && rr.ParentID == r.ID && rr.ID == p.ID && rr.ChildSchemaType == "Permissions" && rr.ParentSchemaType == "Roles" select rr).FirstOrDefault() != null;
if (refHasPermission == false && actualHasPermission)
{
context.AppendLogFormat("正在替角色 {0} 解除功能 {1}\r\n", role2.ToDescription(), permission2.ToDescription());
executor.DisjoinRoleAndPermission(role2, permission2);
}
else if (refHasPermission && actualHasPermission == false)
{
context.AppendLogFormat("正在替角色 {0} 指定功能 {1}\r\n", role2.ToDescription(), permission2.ToDescription());
executor.JoinRoleAndPermission(role2, permission2);
}
}
}
}
}
private void ImportApplication(SCObjectSet objectSet, IImportContext context, PC.Executors.ISCObjectOperations executor, int allCount, int currentStep, int extStepCount, Dictionary <object, object> mappings, PC.SCApplication app)
{
var app2 = this.CopyMode ? AppImportAction.MakeCopy(app) : app;
var summaryName = app2.DisplayName ?? app.Name;
context.SetStatus(currentStep, allCount, "正在导入项目:" + summaryName);
context.AppendLog("正在导入应用" + summaryName);
executor.AddApplication((PC.SCApplication)app2);
var permissionRelation = from p in objectSet.Membership where p.ContainerID == app.ID && p.MemberSchemaType == "Permissions" orderby p.InnerSort ascending select p;
var permissions = (from o in objectSet.Objects join p in permissionRelation on o.ID equals p.ID select(PC.SCPermission) o).ToArray();
var roleRelations = from r in objectSet.Membership where r.ContainerID == app.ID && r.MemberSchemaType == "Roles" orderby r.InnerSort ascending select r;
var roles = (from o in objectSet.Objects join r in roleRelations on o.ID equals r.ID select(PC.SCRole) o).ToArray();
var acls = (from acl in objectSet.Acls where acl.Status == SchemaObjectStatus.Normal && acl.ContainerID == app.ID orderby acl.SortID ascending select acl).ToArray();
int allStepCount = allCount * (extStepCount + 1);
int step = currentStep * (extStepCount + 1);
if (this.IncludePermissions)
{
context.SetStatus(step++, allStepCount, "正在查找功能...");
this.ImportPermissions(context, executor, mappings, app2, permissions, this.CopyMode);
}
if (this.IncludeRoles)
{
context.SetStatus(step++, allStepCount, "正在查找角色...");
this.ImportRoles(context, executor, mappings, app2, roles);
}
if (this.IncludeAcls)
{
context.SetStatus(step++, allStepCount, "正在查找Acl...");
this.ImportAcl(context, executor, app2, acls);
}
if (this.IncludeRoleMembers)
{
context.SetStatus(step++, allStepCount, "正在查找角色成员...");
this.ImportRoleMembers(objectSet, context, executor, mappings, roles);
}
if (this.IncludeRoleConditions)
{
context.SetStatus(step++, allStepCount, "正在查找角色条件...");
this.ImportRoleConditions(objectSet, context, executor, mappings, roles);
}
if (this.IncludeRoles && this.IncludePermissions && this.IncludeRoleDefinitions)
{
context.SetStatus(step++, allStepCount, "正在查找角色功能定义...");
this.ImportRolePermissions(objectSet, context, executor, mappings, permissions, roles, this.CopyMode);
}
}
