public Object(IPortalApplication portalApplication, IMcmRepository mcmRepository, IPermissionManager permissionManager, IObjectCreate objectCreate, IObjectDelete objectDelete, IObjectSetPublishSettings objectSetPublishSettings) : base(portalApplication, mcmRepository, permissionManager)
{
ObjectCreate = objectCreate;
ObjectDelete = objectDelete;
ObjectSetPublishSettings = objectSetPublishSettings;
ObjectQueryHelper = new ObjectQueryHelper(portalApplication);
}
/// <inheritdoc/>
public AuthorizationScriptManager(IPermissionManager permissionManager)
{
OwSession = NullOwSession.Instance;
PermissionChecker = NullPermissionChecker.Instance;
_permissionManager = permissionManager;
}
public UsersController(
IMessageBus messageBus,
IUserContext userContext,
IProjectViewModelQuery projectViewModelQuery,
ISightingViewModelQuery sightingViewModelQuery,
IActivityViewModelQuery activityViewModelQuery,
IPostViewModelQuery postViewModelQuery,
IUserViewModelQuery userViewModelQuery,
IPermissionManager permissionManager,
IDocumentSession documentSession
)
{
Check.RequireNotNull(messageBus, "messageBus");
Check.RequireNotNull(userContext, "userContext");
Check.RequireNotNull(projectViewModelQuery, "projectViewModelQuery");
Check.RequireNotNull(sightingViewModelQuery, "sightingViewModelQuery");
Check.RequireNotNull(activityViewModelQuery, "activityViewModelQuery");
Check.RequireNotNull(postViewModelQuery, "postViewModelQuery");
Check.RequireNotNull(userViewModelQuery, "userViewModelQuery");
Check.RequireNotNull(permissionManager, "permissionManager");
Check.RequireNotNull(documentSession, "documentSession");
_messageBus = messageBus;
_userContext = userContext;
_projectViewModelQuery = projectViewModelQuery;
_sightingViewModelQuery = sightingViewModelQuery;
_activityViewModelQuery = activityViewModelQuery;
_postViewModelQuery = postViewModelQuery;
_userViewModelQuery = userViewModelQuery;
_permissionManager = permissionManager;
_documentSession = documentSession;
}
public UserAppService(IRepository<User, long> userRepository, IPermissionManager permissionManager,
ILocalizationManager localizationManager)
{
_userRepository = userRepository;
_permissionManager = permissionManager;
_localizationManager = localizationManager;
}
public UserAppService(UserManager userManager, RoleManager roleManager, IPermissionManager permissionManager, ILocalizationContext localizationContext)
{
this.userManager = userManager;
this.roleManager = roleManager;
this.permissionManager = permissionManager;
this.localizationContext = localizationContext;
}
// private UserInfo userInfo = new UserInfo();
public AuthorityManager()
{
//
//TODO: 在此处添加构造函数逻辑
//
//TcpClientChannel channel = new TcpClientChannel();
//ChannelServices.RegisterChannel(channel, false);
//string strRBPCServiceURL = ConfigurationManager.AppSettings["RBPC.Service.url"].ToString();
//string strRBPCServicePort = ConfigurationManager.AppSettings["RBPC.Service.port"].ToString();
string strRBPCServiceURL = ConfigurationManager.AppSettings["RBPCServiceAddress"].ToString();
string strRBPCServicePort = ConfigurationManager.AppSettings["RBPCServicePort"].ToString();
//string tcpChannel = "tcp://" + strRBPCServiceURL + ":" + strRBPCServicePort + "/";
string strAccountMgrURL = "tcp://" + strRBPCServiceURL + ":" + strRBPCServicePort + "/IAccountManager";
log.Debug("*-*-strAccountMgrURL=" + strAccountMgrURL);
string strPermissionMgrURL = "tcp://" + strRBPCServiceURL + ":" + strRBPCServicePort + "/IPermissionManager";
log.Debug("*-*-strPermissionMgrURL=" + strPermissionMgrURL);
string strRoleMgrURL = "tcp://" + strRBPCServiceURL + ":" + strRBPCServicePort + "/IRoleManager";
log.Debug("*-*-strRoleMgrURL=" + strRoleMgrURL);
string strSecurityMgrURL = "tcp://" + strRBPCServiceURL + ":" + strRBPCServicePort + "/ISecurityManager";
log.Debug("*-*-strSecurityMgrURL=" + strSecurityMgrURL);
accountMgr = (IAccountManager)Activator.GetObject(typeof(IAccountManager), strAccountMgrURL);
permissionMgr = (IPermissionManager)Activator.GetObject(typeof(IPermissionManager), strPermissionMgrURL);
roleMgr = (IRoleManager)Activator.GetObject(typeof(IRoleManager), strRoleMgrURL);
securityMgr = (ISecurityManager)Activator.GetObject(typeof(ISecurityManager), strSecurityMgrURL);
application = System.Configuration.ConfigurationManager.AppSettings.Get("RBPCApplication").ToString();
}
public Object(IPortalApplication portalApplication, IMcmRepository mcmRepository, IPermissionManager permissionManager) : base(portalApplication, mcmRepository, permissionManager)
{
ObjectCreate = new ObjectCreate(mcmRepository, permissionManager, portalApplication.ViewManager);
ObjectDelete = new ObjectDelete(mcmRepository, permissionManager, portalApplication.ViewManager);
ObjectSetPublishSettings = new ObjectSetPublishSettings(mcmRepository, permissionManager, portalApplication.ViewManager);
ObjectQueryHelper = new ObjectQueryHelper(portalApplication);
}
public OrganisationsController(
IMessageBus messageBus,
IUserContext userContext,
IOrganisationViewModelQuery organisationViewModelQuery,
IActivityViewModelQuery activityViewModelQuery,
IPostViewModelQuery postViewModelQuery,
IUserViewModelQuery userViewModelQuery,
IPermissionManager permissionManager,
IDocumentSession documentSession
)
{
Check.RequireNotNull(messageBus, "messageBus");
Check.RequireNotNull(userContext, "userContext");
Check.RequireNotNull(organisationViewModelQuery, "organisationViewModelQuery");
Check.RequireNotNull(activityViewModelQuery, "activityViewModelQuery");
Check.RequireNotNull(postViewModelQuery, "postViewModelQuery");
Check.RequireNotNull(userViewModelQuery, "userViewModelQuery");
Check.RequireNotNull(permissionManager, "permissionManager");
Check.RequireNotNull(documentSession, "documentSession");
_messageBus = messageBus;
_userContext = userContext;
_organisationViewModelQuery = organisationViewModelQuery;
_activityViewModelQuery = activityViewModelQuery;
_postViewModelQuery = postViewModelQuery;
_userViewModelQuery = userViewModelQuery;
_permissionManager = permissionManager;
_documentSession = documentSession;
}
protected AMcmExtension(IPortalApplication portalApplication, IMcmRepository mcmRepository,
IPermissionManager permissionManager)
: base(portalApplication)
{
McmRepository = mcmRepository;
PermissionManager = permissionManager;
}
public AbpUserConfigurationBuilder(
IMultiTenancyConfig multiTenancyConfig,
ILanguageManager languageManager,
ILocalizationManager localizationManager,
IFeatureManager featureManager,
IFeatureChecker featureChecker,
IPermissionManager permissionManager,
IUserNavigationManager userNavigationManager,
ISettingDefinitionManager settingDefinitionManager,
ISettingManager settingManager,
IAbpAntiForgeryConfiguration abpAntiForgeryConfiguration,
IAbpSession abpSession,
IPermissionChecker permissionChecker)
{
_multiTenancyConfig = multiTenancyConfig;
_languageManager = languageManager;
_localizationManager = localizationManager;
_featureManager = featureManager;
_featureChecker = featureChecker;
_permissionManager = permissionManager;
_userNavigationManager = userNavigationManager;
_settingDefinitionManager = settingDefinitionManager;
_settingManager = settingManager;
_abpAntiForgeryConfiguration = abpAntiForgeryConfiguration;
_abpSession = abpSession;
_permissionChecker = permissionChecker;
}
public UserAppService(UserManager userManager, UserStore userStore, IRepository<User, long> userRepository, IPermissionManager permissionManager)
{
_userManager = userManager;
_userStore = userStore;
_userRepository = userRepository;
_permissionManager = permissionManager;
}
public AuthorityManager()
{
permissionManager = RBPCAgent.getRBPCManager<IPermissionManager>();
securityManager = RBPCAgent.getRBPCManager<ISecurityManager>();
roleManager = RBPCAgent.getRBPCManager<IRoleManager>();
accountManager = RBPCAgent.getRBPCManager<IAccountManager>();
appName = ConfigurationManager.AppSettings["RBPCApplication"].ToString();
}
public Object(IPortalApplication portalApplication, IMcmRepository mcmRepository, IPermissionManager permissionManager)
: this(portalApplication,
mcmRepository,
permissionManager,
new ObjectCreate(mcmRepository, permissionManager, portalApplication.ViewManager),
new ObjectDelete(mcmRepository, permissionManager, portalApplication.ViewManager),
new ObjectSetPublishSettings(mcmRepository, permissionManager, portalApplication.ViewManager))
{
}
public RolePermissionsService(IRoleService roleService,
IAuthorizer authorizer,
IPermissionManager permissionManager,
IEventManager eventManager)
{
_roleService = roleService;
_authorizer = authorizer;
_permissionManager = permissionManager;
_eventManager = eventManager;
_allPermissionsCache = _permissionManager.GetAllPermissions();
}
public Bot(IClient client, IStorageManager storage, ICommandManager command, IPluginManager plugin,
IAuthenticationManager authentication, IPermissionManager permission)
{
_client = client;
_storage = storage;
_command = command;
_plugin = plugin;
_authentication = authentication;
_permission = permission;
_data = storage.Global().GetOrCreate<BotData>(_storageIdentifier);
_replyHandler = new ReplyHandler(this, _data);
_messsageHandler = new MessageHandler(this, _replyHandler, _data);
}
public RoleController(IRoleService roleService,
IModuleManager moduleManager,
IPermissionManager permissionManager,
IMenuService menuService,
IRoleBelongsSystemService belongsSystemService,
IAuthorizer authorizer, ITranslation translation,
IRolePermissionsService rolePermissionsService)
{
_roleService = roleService;
_moduleManager = moduleManager;
_permissionManager = permissionManager;
_menuService = menuService;
_belongsSystemService = belongsSystemService;
_authorizer = authorizer;
_translation = translation;
_rolePermissionsService = rolePermissionsService;
}
public static Type FindDataSourceAndCheckPermissions(
this IDomainModel DomainModel,
IPermissionManager Permissions,
string domainName)
{
if (string.IsNullOrEmpty(domainName))
throw new ArgumentException("Domain object name not provided.");
var domainObjectType = DomainModel.Find(domainName);
if (domainObjectType == null)
throw new ArgumentException("Couldn't find domain object: {0}".With(domainName));
if (!typeof(IDataSource).IsAssignableFrom(domainObjectType))
throw new ArgumentException(@"Specified type ({0}) is not a data source.
Please check your arguments.".With(domainName));
if (!Permissions.CanAccess(domainObjectType))
throw new SecurityException("You don't have permission to access: {0}.".With(domainName));
return domainObjectType;
}
public PostsController(
IMessageBus messageBus,
IUserContext userContext,
IPostViewModelQuery postViewModelQuery,
IDocumentSession documentSession,
IPermissionManager permissionManager
)
{
Check.RequireNotNull(messageBus, "messageBus");
Check.RequireNotNull(userContext, "userContext");
Check.RequireNotNull(postViewModelQuery, "postViewModelQuery");
Check.RequireNotNull(documentSession, "documentSession");
Check.RequireNotNull(permissionManager, "permissionManager");
_messageBus = messageBus;
_userContext = userContext;
_postViewModelQuery = postViewModelQuery;
_documentSession = documentSession;
_permissionManager = permissionManager;
}
public UserManager(
RoleManager roleManager,
UserStore store,
IOptions <IdentityOptions> optionsAccessor,
IPasswordHasher <User> passwordHasher,
IEnumerable <IUserValidator <User> > userValidators,
IEnumerable <IPasswordValidator <User> > passwordValidators,
ILookupNormalizer keyNormalizer,
IdentityErrorDescriber errors,
IServiceProvider services,
ILogger <UserManager <User> > logger,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ICacheManager cacheManager,
IRepository <OrganizationUnit, long> organizationUnitRepository,
IRepository <UserOrganizationUnit, long> userOrganizationUnitRepository,
IOrganizationUnitSettings organizationUnitSettings,
ISettingManager settingManager)
: base(
roleManager,
store,
optionsAccessor,
passwordHasher,
userValidators,
passwordValidators,
keyNormalizer,
errors,
services,
logger,
permissionManager,
unitOfWorkManager,
cacheManager,
organizationUnitRepository,
userOrganizationUnitRepository,
organizationUnitSettings,
settingManager)
{
}
public UserManager(
UserStore userStore,
RoleManager roleManager,
SpreadManager spreadManager,
ChannelAgencyManager channelAgencyManager,
IEventBus eventBus,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ICacheManager cacheManager,
IRepository <User, long> userRepository,
IRepository <ChannelAgency> channelAgencyRepository,
IRepository <OrganizationUnit, long> organizationUnitRepository,
IRepository <UserOrganizationUnit, long> userOrganizationUnitRepository,
IOrganizationUnitSettings organizationUnitSettings,
ILocalizationManager localizationManager,
ISettingManager settingManager,
IdentityEmailMessageService emailService,
IUserTokenProviderAccessor userTokenProviderAccessor)
: base(
userStore,
roleManager,
permissionManager,
unitOfWorkManager,
cacheManager,
organizationUnitRepository,
userOrganizationUnitRepository,
organizationUnitSettings,
localizationManager,
emailService,
settingManager,
userTokenProviderAccessor)
{
SpreadManager = spreadManager;
EventBus = eventBus;
_channelAgencyRepository = channelAgencyRepository;
_channelAgencyManager = channelAgencyManager;
_userRepository = userRepository;
}
protected MajidUserManager(
MajidUserStore <TRole, TUser> userStore,
MajidRoleManager <TRole, TUser> roleManager,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ICacheManager cacheManager,
IRepository <OrganizationUnit, long> organizationUnitRepository,
IRepository <UserOrganizationUnit, long> userOrganizationUnitRepository,
IOrganizationUnitSettings organizationUnitSettings,
ILocalizationManager localizationManager,
IdentityEmailMessageService emailService,
ISettingManager settingManager,
IUserTokenProviderAccessor userTokenProviderAccessor)
: base(userStore)
{
MajidStore = userStore;
RoleManager = roleManager;
LocalizationManager = localizationManager;
LocalizationSourceName = MajidZeroConsts.LocalizationSourceName;
_settingManager = settingManager;
_permissionManager = permissionManager;
_unitOfWorkManager = unitOfWorkManager;
_cacheManager = cacheManager;
_organizationUnitRepository = organizationUnitRepository;
_userOrganizationUnitRepository = userOrganizationUnitRepository;
_organizationUnitSettings = organizationUnitSettings;
MajidSession = NullMajidSession.Instance;
UserLockoutEnabledByDefault = true;
DefaultAccountLockoutTimeSpan = TimeSpan.FromMinutes(5);
MaxFailedAccessAttemptsBeforeLockout = 5;
EmailService = emailService;
UserTokenProvider = userTokenProviderAccessor.GetUserTokenProviderOrNull <TUser>();
}
//TODO: Non-generic parameters may be converted to property-injection
protected AbpUserManager(
AbpUserStore <TTenant, TRole, TUser> userStore,
AbpRoleManager <TTenant, TRole, TUser> roleManager,
IRepository <TTenant> tenantRepository,
IMultiTenancyConfig multiTenancyConfig,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ISettingManager settingManager,
IUserManagementConfig userManagementConfig,
IIocResolver iocResolver)
: base(userStore)
{
AbpStore = userStore;
RoleManager = roleManager;
SettingManager = settingManager;
_tenantRepository = tenantRepository;
_multiTenancyConfig = multiTenancyConfig;
_permissionManager = permissionManager;
_unitOfWorkManager = unitOfWorkManager;
_userManagementConfig = userManagementConfig;
_iocResolver = iocResolver;
LocalizationManager = NullLocalizationManager.Instance;
}
public RoleManager(
RoleStore store,
IEnumerable <IRoleValidator <Role> > roleValidators,
ILookupNormalizer keyNormalizer,
IdentityErrorDescriber errors,
ILogger <AbpRoleManager <Role, User> > logger,
IPermissionManager permissionManager,
ICacheManager cacheManager,
IUnitOfWorkManager unitOfWorkManager,
IRoleManagementConfig roleManagementConfig,
IRepository <OrganizationUnit, long> organizationUnitRepository,
IRepository <OrganizationUnitRole, long> organizationUnitRoleRepository)
: base(
store,
roleValidators,
keyNormalizer,
errors, logger,
permissionManager,
cacheManager,
unitOfWorkManager,
roleManagementConfig, organizationUnitRepository, organizationUnitRoleRepository)
{
}
public UserManager(
UserStore store,
RoleManager roleManager,
IRepository <Tenant> tenantRepository,
IMultiTenancyConfig multiTenancyConfig,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ISettingManager settingManager,
IUserManagementConfig userManagementConfig,
IIocResolver iocResolver)
: base(
store,
roleManager,
tenantRepository,
multiTenancyConfig,
permissionManager,
unitOfWorkManager,
settingManager,
userManagementConfig,
iocResolver
)
{
}
public RoleManager(
RoleStore store,
IEnumerable <IRoleValidator <Role> > roleValidators,
ILookupNormalizer keyNormalizer,
IdentityErrorDescriber errors,
ILogger <AbpRoleManager <Role, User> > logger,
IHttpContextAccessor contextAccessor,
IPermissionManager permissionManager,
ICacheManager cacheManager,
IUnitOfWorkManager unitOfWorkManager,
IRoleManagementConfig roleManagementConfig)
: base(
store,
roleValidators,
keyNormalizer,
errors, logger,
contextAccessor,
permissionManager,
cacheManager,
unitOfWorkManager,
roleManagementConfig)
{
}
public static IEnumerable <Permission> GetPermissionsFromNamesByValidating(this IPermissionManager permissionManager, IEnumerable <string> permissionNames)
{
List <Permission> permissions = new List <Permission>();
List <string> strs = new List <string>();
foreach (string str in permissionNames)
{
Permission permissionOrNull = permissionManager.GetPermissionOrNull(str);
if (permissionOrNull == null)
{
strs.Add(str);
}
permissions.Add(permissionOrNull);
}
if (strs.Count > 0)
{
throw new AbpValidationException(string.Format("There are {0} undefined permission names.", strs.Count))
{
ValidationErrors = strs.ConvertAll <ValidationResult>((string permissionName) => new ValidationResult(string.Concat("Undefined permission: ", permissionName)))
};
}
return(permissions);
}
private static async Task SecureItemFromGroupAsync(IPermissionManager mgr, int workspaceId, string groupName, int artifactId)
{
var itemSecurity = await mgr.GetItemLevelSecurityAsync(workspaceId, artifactId);
if (!itemSecurity.Enabled)
{
itemSecurity.Enabled = true;
await mgr.SetItemLevelSecurityAsync(workspaceId, itemSecurity);
}
var selection = await mgr.GetItemGroupSelectorAsync(workspaceId, artifactId);
foreach (var enabledGroup in selection.EnabledGroups)
{
if (enabledGroup.Name == groupName)
{
selection.DisabledGroups.Add(enabledGroup);
selection.EnabledGroups.Add(enabledGroup);
await mgr.AddRemoveItemGroupsAsync(workspaceId, artifactId, selection);
break;
}
}
}
protected StudioXUserManager(
StudioXUserStore <TRole, TUser> userStore,
StudioXRoleManager <TRole, TUser> roleManager,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ICacheManager cacheManager,
IRepository <OrganizationUnit, long> organizationUnitRepository,
IRepository <UserOrganizationUnit, long> userOrganizationUnitRepository,
IOrganizationUnitSettings organizationUnitSettings,
ILocalizationManager localizationManager,
IdentityEmailMessageService emailService,
ISettingManager settingManager,
IUserTokenProviderAccessor userTokenProviderAccessor)
: base(userStore)
{
StudioXStore = userStore;
RoleManager = roleManager;
LocalizationManager = localizationManager;
this.settingManager = settingManager;
this.permissionManager = permissionManager;
this.unitOfWorkManager = unitOfWorkManager;
this.cacheManager = cacheManager;
this.organizationUnitRepository = organizationUnitRepository;
this.userOrganizationUnitRepository = userOrganizationUnitRepository;
this.organizationUnitSettings = organizationUnitSettings;
StudioXSession = NullStudioXSession.Instance;
UserLockoutEnabledByDefault = true;
DefaultAccountLockoutTimeSpan = TimeSpan.FromMinutes(5);
MaxFailedAccessAttemptsBeforeLockout = 5;
EmailService = emailService;
UserTokenProvider = userTokenProviderAccessor.GetUserTokenProviderOrNull <TUser>();
}
public BlogUserManager(
BlogUserStore store,
BlogRoleManager blogRoleManager,
ISampleBlogRepository <BlogTenant> tenantRepository,
IMultiTenancyConfig multiTenancyConfig,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ISettingManager settingManager,
IUserManagementConfig userManagementConfig,
IIocResolver iocResolver,
ICacheManager cacheManager)
: base(
store,
blogRoleManager,
tenantRepository,
multiTenancyConfig,
permissionManager,
unitOfWorkManager,
settingManager,
userManagementConfig,
iocResolver,
cacheManager)
{
}
protected UserOrganizationUnitManager(
//AbpUserStore<TRole, TUser> userStore,
//AbpRoleManager<TRole, TUser> roleManager,
IPermissionManager permissionManager,
IUnitOfWorkManager unitOfWorkManager,
ICacheManager cacheManager,
IRepository <OrganizationUnit, long> organizationUnitRepository,
IRepository <UserOrganizationUnit, long> userOrganizationUnitRepository,
IOrganizationUnitSettings organizationUnitSettings,
ILocalizationManager localizationManager,
ISettingManager settingManager)
//: base(userStore)
{
//AbpStore = userStore;
//RoleManager = roleManager;
LocalizationManager = localizationManager;
LocalizationSourceName = AbpZeroConsts.LocalizationSourceName;
_settingManager = settingManager;
_permissionManager = permissionManager;
_unitOfWorkManager = unitOfWorkManager;
_cacheManager = cacheManager;
_organizationUnitRepository = organizationUnitRepository;
_userOrganizationUnitRepository = userOrganizationUnitRepository;
_organizationUnitSettings = organizationUnitSettings;
AbpSession = NullAbpSession.Instance;
//UserLockoutEnabledByDefault = true;
//DefaultAccountLockoutTimeSpan = TimeSpan.FromMinutes(5);
//MaxFailedAccessAttemptsBeforeLockout = 5;
//EmailService = emailService;
//UserTokenProvider = userTokenProviderAccessor.GetUserTokenProviderOrNull<TUser>();
}
protected override bool IsAuthorized(HttpActionContext actionContext)
{
if (!base.IsAuthorized(actionContext))
{
throw new Exception("您没有访问权限!");
}
try
{
IPermissionManager permissionManager = CreatePermissionManager();
if (permissionManager.HasPermission(Permission))
{
return(true);
}
else
{
throw new Exception("您没有访问权限!");
}
}
catch (System.Exception ex)
{
_logger.Error(ex.ToString(), ex);
return(false);
}
}
public RoleManager(
RoleStore store,
IEnumerable <IRoleValidator <Role> > roleValidators,
ILookupNormalizer keyNormalizer,
IdentityErrorDescriber errors,
ILogger <RoleManager> logger,
IPermissionManager permissionManager,
IRoleManagementConfig roleManagementConfig,
ICacheManager cacheManager,
IUnitOfWorkManager unitOfWorkManager,
ILocalizationManager localizationManager)
: base(
store,
roleValidators,
keyNormalizer,
errors,
logger,
permissionManager,
cacheManager,
unitOfWorkManager,
roleManagementConfig)
{
_localizationManager = localizationManager;
}
/// <summary>
/// Check if current principal bound to thread can access some resource.
/// Resource identity will be provided from target type argument full name.
/// </summary>
/// <param name="manager">permission service</param>
/// <param name="target">type argument</param>
/// <returns>is user allowed to access requested resource</returns>
public static bool CanAccess(this IPermissionManager manager, Type target)
{
Contract.Requires(manager != null);
return(manager.CanAccess(target.FullName, Thread.CurrentPrincipal));
}
/// <summary>
/// Check if current principal bound to thread can access some resource.
/// Resource identity will be provided from type full name.
/// </summary>
/// <typeparam name="T">object type</typeparam>
/// <param name="manager">permission service</param>
/// <returns>is user allowed to access requested resource</returns>
public static bool CanAccess <T>(this IPermissionManager manager)
{
Contract.Requires(manager != null);
return(manager.CanAccess(typeof(T).FullName, Thread.CurrentPrincipal));
}
/// <summary>
/// Specify filter which will be applied when user principal is not in specified role.
/// Users which are not in specified role will not have this filter applied to them.
/// </summary>
/// <typeparam name="T">object type</typeparam>
/// <param name="manager">permission service</param>
/// <param name="filter">filtering expression</param>
/// <param name="role">for which role filter applies</param>
/// <returns>un-register instance. If called registration will be removed</returns>
public static IDisposable RegisterWhenNotInRole <T>(this IPermissionManager manager, Expression <Func <T, bool> > filter, string role)
{
return(manager.RegisterFilter(filter, role, false));
}
public RoleAppService(RoleManager roleManager, IPermissionManager permissionManager, ILocalizationContext localizationContext)
{
this.roleManager = roleManager;
this.permissionManager = permissionManager;
this.localizationContext = localizationContext;
}
public RoleAppService(RoleManager roleManager, IPermissionManager permissionManager)
{
_roleManager = roleManager;
_permissionManager = permissionManager;
}
public static DataTable PopulateTable <TInput, TOutput>(
ISerialization <TInput> input,
ISerialization <TOutput> output,
IServiceProvider Locator,
IDomainModel DomainModel,
Argument <TInput> argument,
IPrincipal principal,
IPermissionManager permissions)
{
var cubeType = DomainModel.Find(argument.CubeName);
if (cubeType == null)
{
throw new ArgumentException(
"Couldn't find cube type {0}.".With(argument.CubeName),
new FrameworkException(@"Example argument:
" + CommandResult <TOutput> .ConvertToString(CreateExampleArgument(output))));
}
if (!permissions.CanAccess(cubeType.FullName, principal))
{
throw new SecurityException("You don't have permission to access: {0}.".With(argument.CubeName));
}
var findImpl = cubeType.GetInterfaces().FirstOrDefault(it => it.IsGenericType && it.GetGenericTypeDefinition() == typeof(IOlapCubeQuery <>));
if (findImpl == null)
{
throw new ArgumentException("Cube type {0} is not IOlapCubeQuery<>.".With(cubeType.FullName));
}
var sourceType = findImpl.GetGenericArguments()[0];
IAnalyzeData command;
if (string.IsNullOrEmpty(argument.SpecificationName))
{
var commandType = typeof(AnalyzeSpecification <,>).MakeGenericType(cubeType, sourceType);
command = (IAnalyzeData)Activator.CreateInstance(commandType);
}
else
{
var specificationType =
DomainModel.FindNested(argument.CubeName, argument.SpecificationName)
?? DomainModel.Find(argument.SpecificationName);
if (specificationType == null)
{
throw new ArgumentException("Couldn't find specification: {0}".With(argument.SpecificationName));
}
var commandType = typeof(AnalyzeWithSpecification <, ,>).MakeGenericType(cubeType, sourceType, specificationType);
command = (IAnalyzeData)Activator.CreateInstance(commandType);
}
return
(command.Analyze(
input,
Locator,
argument.Dimensions,
argument.Facts,
argument.Order,
argument.Limit,
argument.Offset,
argument.Specification));
}
public ObjectViewData(Object obj, IPermissionManager permissionManager)
{
Object = obj;
PermissionManager = permissionManager;
}
public Folder(IPortalApplication portalApplication, IMcmRepository mcmRepository,
IPermissionManager permissionManager) : base(portalApplication, mcmRepository, permissionManager)
{
}
public PermissionAuthorizationHandler(ILogger <PermissionAuthorizationHandler> logger, IPermissionManager permissionManager)
{
_logger = logger;
_permissionManager = permissionManager;
}
/// <summary>
/// Secures an artifact in a workspace from a group that is specified.
/// The group and workspace must be setup before hand
/// </summary>
/// <param name="mgr"></param>
/// <param name="workspaceId">The id of the workspace that contains the group and artifact that should be secured</param>
/// <param name="groupName">The group that you want to artifact secured from</param>
/// <param name="artifactId">The id of the artifact that should be secured</param>
public static void SecureItemFromGroup(IPermissionManager mgr, int workspaceId, string groupName, int artifactId)
{
Task.WaitAll(SecureItemFromGroupAsync(mgr, workspaceId, groupName, artifactId));
}
public UserNavigationManager(IPermissionManager permissionManager, INavigationManager navigationManager)
{
_permissionManager = permissionManager;
_navigationManager = navigationManager;
}
public ObjectSetPublishSettings(IMcmRepository mcmRepository, IPermissionManager permissionManager, IViewManager viewManager)
: base(mcmRepository, permissionManager, viewManager)
{
}
public PermissionManagerMiddleware(OwinMiddleware next, IPermissionManager permissionManager) : base(next)
{
this.PManager = permissionManager;
}
public UserAppService(UserManager userManager, IPermissionManager permissionManager)
{
_userManager = userManager;
_permissionManager = permissionManager;
}
public UserAppService(IRepository <User, long> userRepository, IPermissionManager permissionManager)
{
_userRepository = userRepository;
_permissionManager = permissionManager;
}
public RoleAppService(RoleManager roleManager, IPermissionManager permissionManager)
{
_roleManager = roleManager;
_permissionManager = permissionManager;
}
public MyPermissionExampleService(IPermissionManager permissionManager)
{
_permissionManager = permissionManager;
}
/// <inheritdoc/>
public AuthorizationScriptManager(IPermissionManager permissionManager)
{
AbpSession = NullAbpSession.Instance;
_permissionManager = permissionManager;
}
/// <summary>
/// Gets all permissions by names.
/// Throws <see cref="AbpValidationException"/> if can not find any of the permission names.
/// </summary>
public static IEnumerable <Abp.Authorization.Permission> GetPermissionsFromNamesByValidating(this IPermissionManager permissionManager, IEnumerable <string> permissionNames)
{
var permissions = new List <Abp.Authorization.Permission>();
var undefinedPermissionNames = new List <string>();
foreach (var permissionName in permissionNames)
{
var permission = permissionManager.GetPermissionOrNull(permissionName);
if (permission == null)
{
undefinedPermissionNames.Add(permissionName);
}
permissions.Add(permission);
}
if (undefinedPermissionNames.Count > 0)
{
throw new AbpValidationException(string.Format("There are {0} undefined permission names.", undefinedPermissionNames.Count))
{
ValidationErrors = undefinedPermissionNames.ConvertAll(permissionName => new ValidationResult("Undefined permission: " + permissionName))
};
}
return(permissions);
}
/// <summary>
/// Filter data based on user principal bound to current Thread.
/// This will apply various permissions registered for this user and for data of type T
/// If interface is provided, permissions must be defined explicitly for that interface.
/// </summary>
/// <typeparam name="T">object type</typeparam>
/// <param name="manager">permission service</param>
/// <param name="data">data to filter</param>
/// <returns>filtered data based on permission rules</returns>
public static T[] ApplyFilters <T>(this IPermissionManager manager, T[] data)
{
Contract.Requires(manager != null);
return(manager.ApplyFilters(Thread.CurrentPrincipal, data));
}
public ObjectRelation(IPortalApplication portalApplication, IMcmRepository mcmRepository, IPermissionManager permissionManager) : base(portalApplication, mcmRepository, permissionManager)
{
}
public AuthenticationScriptManager(IAuthorizationService authorizationService, IPermissionManager permissionManager)
{
_authorizationService = authorizationService;
_permissionManager = permissionManager;
}
public RoleDatumViewerHandler(IPermissionManager permMgr)
{
_permMgr = permMgr;
}
public RoleAppService_Tests()
{
_roleAppService = Resolve <IRoleAppService>();
_permissionManager = Resolve <IPermissionManager>();
}
public UserAppService(UserManager userManager, IPermissionManager permissionManager)
{
_userManager = userManager;
_permissionManager = permissionManager;
}
/// <summary>
/// 初始化权限服务
/// </summary>
/// <param name="unitOfWork">工作单元</param>
/// <param name="permissionManager">权限服务</param>
/// <param name="permissionRepository">权限仓储</param>
public PermissionService(IGreatWallUnitOfWork unitOfWork, IPermissionManager permissionManager, IPermissionRepository permissionRepository)
{
GreatWallUnitOfWork = unitOfWork;
PermissionManager = permissionManager;
PermissionRepository = permissionRepository;
}
public TestRoleManager(IPermissionManager permissionManager)
{
_permissionManager = permissionManager;
}
public ObjectView(IPermissionManager permissionManager) : base("Object")
{
PermissionManager = permissionManager;
}
