protected override bool AuthorizeCore(HttpContextBase httpContext) { if (httpContext.User.Identity.IsAuthenticated) { using (var db = new EasySenseContext()) { var user = (from u in db.Users where u.Username == httpContext.User.Identity.Name select u).Single(); if (user.Role >= UserRole.Root) { return(true); } var UserID = 0; if (((MvcHandler)httpContext.Handler).RequestContext.RouteData.Values["id"] != null) { UserID = Convert.ToInt32(((MvcHandler)httpContext.Handler).RequestContext.RouteData.Values["id"].ToString()); } else { UserID = Convert.ToInt32(httpContext.Request.Form["id"]); } if (UserID == user.ID) { return(true); } } } return(false); }
protected override bool AuthorizeCore(HttpContextBase httpContext) { if (httpContext.User.Identity.IsAuthenticated) { using (var db = new EasySenseContext()) { var user = (from u in db.Users where u.Username == httpContext.User.Identity.Name select u).Single(); if (user.Role >= UserRole.Root) { return(true); } Guid AlarmID; if (((MvcHandler)httpContext.Handler).RequestContext.RouteData.Values["id"] != null) { AlarmID = Guid.Parse(((MvcHandler)httpContext.Handler).RequestContext.RouteData.Values["id"].ToString()); } else { AlarmID = Guid.Parse(httpContext.Request.Form["id"].ToString()); } if ((from a in db.Alarms where a.UserID == user.ID && a.ID == AlarmID select a).Count() > 0) { return(true); } } } return(false); }
protected override bool AuthorizeCore(HttpContextBase httpContext) { if (httpContext.User.Identity.IsAuthenticated) { using (var db = new EasySenseContext()) { var user = (from u in db.Users where u.Username == httpContext.User.Identity.Name select u).Single(); if (user.Role >= UserRole.Root) { return(true); } var project = db.Projects.Find(Convert.ToInt32(((MvcHandler)httpContext.Handler).RequestContext.RouteData.Values["id"])); if (user.Role == UserRole.Master && project.User.Department.UserID == user.ID) { return(true); } if (project.UserID == user.ID) { return(true); } } } return(false); }
protected override bool AuthorizeCore(HttpContextBase httpContext) { if (httpContext.User.Identity.IsAuthenticated) { using (var db = new EasySenseContext()) { var user = (from u in db.Users where u.Username == httpContext.User.Identity.Name && u.Role >= Role select u).SingleOrDefault(); if (user != null) { return(true); } } } return(false); }
protected override bool AuthorizeCore(HttpContextBase httpContext) { if (httpContext.User.Identity.IsAuthenticated) { using (var db = new EasySenseContext()) { var user = (from u in db.Users where u.Username == httpContext.User.Identity.Name select u).Single(); if (user.Role >= UserRole.Root) { return(true); } Guid StatisticsID; if (((MvcHandler)httpContext.Handler).RequestContext.RouteData.Values["id"] != null) { StatisticsID = Guid.Parse(((MvcHandler)httpContext.Handler).RequestContext.RouteData.Values["id"].ToString()); } else { StatisticsID = Guid.Parse(httpContext.Request.Form["id"].ToString()); } var statistics = db.Statistics.Find(StatisticsID); if (statistics.PushTo == null) { return(true); } if (statistics.PushTo == UserRole.Finance && user.Role == UserRole.Finance) { return(true); } if (statistics.PushTo == UserRole.Master && user.Role == UserRole.Master) { return(true); } } } return(false); }