public void Test_RoleAPIWithDomains()
{
Enforcer e = new Enforcer("examples/rbac_with_domains_model.conf", "examples/rbac_with_domains_policy.csv");
TestGetRolesInDomain(e, "alice", "domain1", AsList("admin"));
TestGetRolesInDomain(e, "bob", "domain1", AsList());
TestGetRolesInDomain(e, "admin", "domain1", AsList());
TestGetRolesInDomain(e, "non_exist", "domain1", AsList());
TestGetRolesInDomain(e, "alice", "domain2", AsList());
TestGetRolesInDomain(e, "bob", "domain2", AsList("admin"));
TestGetRolesInDomain(e, "admin", "domain2", AsList());
TestGetRolesInDomain(e, "non_exist", "domain2", AsList());
e.DeleteRoleForUserInDomain("alice", "admin", "domain1");
e.AddRoleForUserInDomain("bob", "admin", "domain1");
TestGetRolesInDomain(e, "alice", "domain1", AsList());
TestGetRolesInDomain(e, "bob", "domain1", AsList("admin"));
TestGetRolesInDomain(e, "admin", "domain1", AsList());
TestGetRolesInDomain(e, "non_exist", "domain1", AsList());
TestGetRolesInDomain(e, "alice", "domain2", AsList());
TestGetRolesInDomain(e, "bob", "domain2", AsList("admin"));
TestGetRolesInDomain(e, "admin", "domain2", AsList());
TestGetRolesInDomain(e, "non_exist", "domain2", AsList());
}
public void TestRoleApiWithDomains()
{
var e = new Enforcer(_testModelFixture.GetNewRbacWithDomainsTestModel());
e.BuildRoleLinks();
TestGetRolesInDomain(e, "alice", "domain1", AsList("admin"));
TestGetRolesInDomain(e, "bob", "domain1", AsList());
TestGetRolesInDomain(e, "admin", "domain1", AsList());
TestGetRolesInDomain(e, "non_exist", "domain1", AsList());
TestGetRolesInDomain(e, "alice", "domain2", AsList());
TestGetRolesInDomain(e, "bob", "domain2", AsList("admin"));
TestGetRolesInDomain(e, "admin", "domain2", AsList());
TestGetRolesInDomain(e, "non_exist", "domain2", AsList());
e.DeleteRoleForUserInDomain("alice", "admin", "domain1");
e.AddRoleForUserInDomain("bob", "admin", "domain1");
TestGetRolesInDomain(e, "alice", "domain1", AsList());
TestGetRolesInDomain(e, "bob", "domain1", AsList("admin"));
TestGetRolesInDomain(e, "admin", "domain1", AsList());
TestGetRolesInDomain(e, "non_exist", "domain1", AsList());
TestGetRolesInDomain(e, "alice", "domain2", AsList());
TestGetRolesInDomain(e, "bob", "domain2", AsList("admin"));
TestGetRolesInDomain(e, "admin", "domain2", AsList());
TestGetRolesInDomain(e, "non_exist", "domain2", AsList());
}
public IActionResult addGeneralRoleWithDomain(string userName, string domain, string roleName)
{
bool response = _enforcer.AddRoleForUserInDomain(userName, roleName, domain);
return(Ok(response));
}