public Result Edit(string id, EditPermissionRequest editPermission)
{
BaseSpecification <PermissionEntity> baseSpecification = new BaseSpecification <PermissionEntity>();
baseSpecification.AddFilter(x => x.Id == id);
PermissionEntity permission = _permissionRepository.SingleOrDefault(baseSpecification);
if (permission == null)
{
_logger.LogError($"No permission. PermissionId {id}");
return(Result.Fail("no_permission", "No Permission"));
}
permission.Update(editPermission.Description);
bool updateResult = _permissionRepository.Update(permission);
if (!updateResult)
{
_logger.LogError($"Failed to update permission. PermissionId {id}");
return(Result.Fail("failed_to_update_permission", "Failed to update permission"));
}
return(Result.Ok());
}
/// <summary>
/// Deletes the permission.
/// </summary>
/// <param name="permission">The permission.</param>
/// <returns></returns>
public string DeletePermission(PermissionEntity permission)
{
const string sql = @"uspDelete_Permission";
object[] parms = { "@PermissionID", permission.PermissionId };
return(Db.Delete(sql, true, parms));
}
/// <summary>
/// Calcula los permisos para un usuario
/// </summary>
/// <param name="sessionId">Identificador de sesión del usuario.</param>
/// <param name="permissionItem">Representa un permiso especifico para una clase de negocios.</param>
private void PermissionList(string sessionID, PermissionEntity permissionItem)
{
List <PermissionEntity> pair;
bool isBusinessClassNotFound = true;
if (permissionDictionary.TryGetValue(sessionID, out pair))
{
foreach (PermissionEntity item in pair)
{
if (item.BusinessClassName == permissionItem.BusinessClassName)
{
item.AllowDelete = item.AllowDelete || permissionItem.AllowDelete;
item.AllowNew = item.AllowNew || permissionItem.AllowNew;
item.AllowRead = item.AllowRead || permissionItem.AllowRead;
item.AllowUpdate = item.AllowUpdate || permissionItem.AllowUpdate;
isBusinessClassNotFound = false;
}
}
if (isBusinessClassNotFound)
{
pair.Add(permissionItem);
}
}
else
{
pair = new List <PermissionEntity>();
pair.Add(permissionItem);
permissionDictionary.Add(sessionID, pair);
}
}
public static PermissionEntity ToPemissionDataModel(this Permission source)
{
var result = new PermissionEntity();
result = Mapper.Map <Permission, PermissionEntity> (source);
return(result);
}
public static Permission ToCoreModel(this PermissionEntity source)
{
var result = new Permission();
result = Mapper.Map <PermissionEntity, Permission>(source);
return(result);
}
public IHttpActionResult UpdatePermissionMenus(dynamic obj)
{
PermissionEntity permission = JsonConvert.DeserializeObject <PermissionEntity>(Convert.ToString(obj.permission));
List <MenuEntity> menus = new List <MenuEntity>();
if (obj.menus != null && Convert.ToString(obj.menus) != string.Empty)
{
menus = JsonConvert.DeserializeObject <List <MenuEntity> >(Convert.ToString(obj.menus));
}
int updateCount = 0;
ResultEntity result = new ResultEntity();
try
{
updateCount = dal.UpdatePermissionMenus(permission.ToPERMISSION(), menus.ConvertAll <MENU>(m => m.ToMENU()));
permission.Menus = menus;
}
catch (Exception e)
{
result.Message = e.Message;
NtripProxyLogger.LogExceptionIntoFile("调用接口api/Permission/UpdatePermissionMenus异常,异常信息为:" + e.Message);
}
result.IsSuccess = updateCount > 0;
result.Data = permission;
return(Json <ResultEntity>(result));
}
/// <summary>
/// 获取某个父类下面的所有权限
/// </summary>
/// <param name="pName"></param>
/// <returns></returns>
public List <PermissionEntity> GetChildPermission(string pName)
{
List <PermissionEntity> ls = new List <PermissionEntity>();
try
{
EasyUiDataSet.PermissionDataTable dt = adp.GetChildPermission(pName);
foreach (EasyUiDataSet.PermissionRow dr in dt.Rows)
{
PermissionEntity entity = new PermissionEntity(
dr.PermissionId,
dr.OperationModule,
dr.OperationName,
dr.OperationOn);
ls.Add(entity);
}
}
catch (Exception ex)
{
throw ex;
}
return(ls);
}
public static async Task Seed(BaleaDbContext db)
{
if (!db.Roles.Any())
{
var john = new SubjectEntity("Alice", "1");
var mary = new SubjectEntity("Bob", "11");
db.Add(john);
db.Add(mary);
await db.SaveChangesAsync();
var application = new ApplicationEntity(BaleaConstants.DefaultApplicationName, "Default application");
var viewGradesPermission = new PermissionEntity(Policies.GradesView);
var editGradesPermission = new PermissionEntity(Policies.GradesEdit);
application.Permissions.Add(viewGradesPermission);
application.Permissions.Add(editGradesPermission);
var teacherRole = new RoleEntity("Teacher", "Teacher role");
teacherRole.Subjects.Add(new RoleSubjectEntity {
SubjectId = john.Id
});
teacherRole.Permissions.Add(new RolePermissionEntity {
Permission = viewGradesPermission
});
teacherRole.Permissions.Add(new RolePermissionEntity {
Permission = editGradesPermission
});
application.Roles.Add(teacherRole);
application.Delegations.Add(new DelegationEntity(john.Id, mary.Id, DateTime.UtcNow.AddDays(-1), DateTime.UtcNow.AddDays(1), true));
db.Applications.Add(application);
await db.SaveChangesAsync();
}
}
public IList <PermissionEntity> GetPermissionEntities(DataTable table)
{
IList <PermissionEntity> list = new List <PermissionEntity>();
int r = 0;
foreach (DataRow row in table.Rows)
{
if (!string.IsNullOrEmpty(row["Title"].ToString().Trim()))
{
PermissionEntity tp = new PermissionEntity();
tp.Title = row["Title"].ToString();
tp.Type = row["Type"].ToString();
tp.Url = row["Url"].ToString();
tp.PermissionType = row["PermissionType"].ToString();
if (tp.PermissionType == "Unique")
{
AddRoles(tp, r, table);
}
list.Add(tp);
}
r++;
}
return(list);
}
private void InitAllPermissionModules()
{
List <PermissionEntity> resList = new List <PermissionEntity>();
string filePath = _permissionConfigFile;
XElement xe = XElement.Load(filePath);
xe.Elements("module")?.ForEach(aModule =>
{
PermissionEntity newModule = new PermissionEntity();
resList.Add(newModule);
newModule.Name = aModule.Attribute("name")?.Value;
newModule.Value = aModule.Attribute("value")?.Value;
newModule.Items = new List <PermissionItemEntity>();
aModule?.Elements("permission")?.ForEach(aItem =>
{
PermissionItemEntity newItem = new PermissionItemEntity();
newModule.Items.Add(newItem);
newItem.Name = aItem?.Attribute("name")?.Value;
newItem.Value = aItem?.Attribute("value")?.Value;
});
});
_allPermissionModules = resList;
}
/// <summary>
/// Método invocado cuando se presiona el botón OK
/// </summary>
/// <param name="sender">
/// el objeto que genera el evento
/// </param>
/// <param name="e">
/// contiene información adicional acerca del evento
/// </param>
protected override void OnOkSelected(object sender, EventArgs e)
{
PermissionManager permissionManager = (PermissionManager)Manager;
Control.HideLastShown();
Manager.Visibility = Visibility.Visible;
Control.LastElementShown = Manager;
PermissionEntity permissionEntity = (PermissionEntity)Entity;
if (!permissionEntity.AllowDelete && !permissionEntity.AllowNew &&
!permissionEntity.AllowRead && !permissionEntity.AllowUpdate)
{
Util.ShowErrorDialog(Resources.EmptyPermissions);
return;
}
foreach (PermissionEntity permission in permissionManager.Group.Permissions)
{
if (permissionEntity.BusinessClassName == permission.BusinessClassName &&
permissionEntity.Id != permission.Id)
{
Util.ShowErrorDialog(Resources.PermissionAlreadyExists);
return;
}
}
if (((AuthorizationEditor)Editor).Mode == EditionMode.Add)
{
permissionManager.Group.Permissions.Add(permissionEntity);
}
Save(((PermissionManager)Manager).Group);
}
private void FillSaveParameters(PermissionEntity permission, IDbCommand sqlCommand)
{
IDbDataParameter parameter;
parameter = dataAccess.GetNewDataParameter("@allowRead", DbType.Boolean);
parameter.Value = permission.AllowRead;
sqlCommand.Parameters.Add(parameter);
parameter = dataAccess.GetNewDataParameter("@allowUpdate", DbType.Boolean);
parameter.Value = permission.AllowUpdate;
sqlCommand.Parameters.Add(parameter);
parameter = dataAccess.GetNewDataParameter("@allowNew", DbType.Boolean);
parameter.Value = permission.AllowNew;
sqlCommand.Parameters.Add(parameter);
parameter = dataAccess.GetNewDataParameter("@allowDelete", DbType.Boolean);
parameter.Value = permission.AllowDelete;
sqlCommand.Parameters.Add(parameter);
parameter = dataAccess.GetNewDataParameter("@businessClassName", DbType.String);
parameter.Value = permission.BusinessClassName;
if (String.IsNullOrEmpty(permission.BusinessClassName))
{
parameter.Value = DBNull.Value;
}
sqlCommand.Parameters.Add(parameter);
parameter = dataAccess.GetNewDataParameter("@idGroup", DbType.Int32);
parameter.Value = permission.IdGroup;
sqlCommand.Parameters.Add(parameter);
}
public async Task RemovePermissionFromRoleAsync(string roleName, string permissionName)
{
ApplicationRole role = await _roleManager.FindByNameAsync(roleName);
if (role == null)
{
throw new InvalidOperationException($"There is no '{roleName}' role in database");
}
await DBContext.Entry(role).Collection(r => r.RolePermissions).LoadAsync();
PermissionEntity permission = await DBContext.Permissions.Include(p => p.PermissionRoles).FirstOrDefaultAsync(p => p.Permission == permissionName);
if (permission == null)
{
throw new InvalidOperationException($"There is no '{permissionName}' permission in database");
}
if (role.RolePermissions == null)
{
throw new InvalidOperationException($"'{roleName}' role already hasn`t '{permissionName}' permission");
}
if (!role.RolePermissions.Any(ptr => ptr.Permission.Permission == permissionName))
{
throw new InvalidOperationException($"'{roleName}' role already hasn`t '{permissionName}' permission");
}
PermissionToRoleEntity ptrToRemove = role.RolePermissions.FirstOrDefault(ptr => ptr.Permission.Permission == permissionName);
role.RolePermissions.Remove(ptrToRemove);
await _roleManager.UpdateAsync(role);
}
public Result Remove(string id)
{
BaseSpecification <PermissionEntity> baseSpecification = new BaseSpecification <PermissionEntity>();
baseSpecification.AddFilter(x => x.Id == id);
PermissionEntity permission = _permissionRepository.SingleOrDefault(baseSpecification);
if (permission == null)
{
_logger.LogError($"No permission. PermissionId {id}");
return(Result.Fail("no_permission", "No Permission"));
}
_logger.LogInformation($"Removing permission. PermissionId {id}, Name {permission.Name}");
bool updateResult = _permissionRepository.Remove(permission);
if (!updateResult)
{
_logger.LogError($"Failed to remove permission. PermissionId {id}");
return(Result.Fail("failed_to_remove_permission", "Failed to remove permission"));
}
return(Result.Ok());
}
public static Action <StoreDbContext, IServiceProvider> Seed()
{
const string DEFAULT_SUBJECT_ID_CONFIGURATION_KEY = "Security:DefaultSubjectId";
return((context, sp) =>
{
if (!context.Permissions.Any())
{
const string DEFAULT_API_KEY = "ZgZ9/qcwJGe/Utefuym5YS/84mE8/9x7kIrx2V/aIxc=";
var configuration = sp.GetRequiredService <IConfiguration>();
context.ApiKeys.Add(
new ApiKeyEntity("demo", DEFAULT_API_KEY, DateTime.UtcNow.AddYears(1)));
var aliceIdSvrPermission = new PermissionEntity()
{
SubjectId = configuration[DEFAULT_SUBJECT_ID_CONFIGURATION_KEY] ?? "818727", //default alice user
ApplicationRole = ApplicationRole.Management
};
var apiKeyPermission = new PermissionEntity()
{
SubjectId = DEFAULT_API_KEY,
ApplicationRole = ApplicationRole.Reader
};
context.Permissions.AddRange(aliceIdSvrPermission);
context.SaveChanges();
}
});
}
public void SeedRolePermissions(List <RoleSeedModel> roleSeedModels)
{
List <RoleEntity> roles = _context.Roles
.Include(x => x.Permissions)
.ThenInclude(x => x.Permission)
.ToList();
List <PermissionEntity> permissions = _context.Permissions.ToList();
List <PermissionRoleEntity> permissionRoleEntities = new List <PermissionRoleEntity>();
foreach (RoleSeedModel role in roleSeedModels)
{
RoleEntity roleEntity = roles
.Where(x => x.NormalizedName == role.Name.ToUpper())
.SingleOrDefault();
if (roleEntity == null)
{
_logger.LogCritical($"No role Role. Name {role.Name}");
throw new Exception($"No Role.");
}
foreach (string permission in role.Permissions)
{
bool exists = roleEntity.Permissions
.Where(x => x.Permission.Name.ToUpper() == permission.ToUpper())
.Any();
if (exists)
{
continue;
}
PermissionEntity permissionEntity = permissions
.Where(x => x.Name.ToUpper() == permission.ToUpper())
.SingleOrDefault();
if (permissionEntity == null)
{
_logger.LogCritical($"Missing role permission. Role: {role.Name}, Permission {permission}");
throw new Exception("Missing role permission");
}
PermissionRoleEntity permissionRoleEntity = new PermissionRoleEntity(
permissionEntity.Id,
roleEntity.Id);
permissionRoleEntities.Add(permissionRoleEntity);
}
}
_context.PermissionRole.AddRange(permissionRoleEntities);
int addPermissionRoleChanges = _context.SaveChanges();
if (addPermissionRoleChanges != permissionRoleEntities.Count())
{
_logger.LogCritical($"Failed to seed role permissions");
throw new Exception("Failed to seed role permissions");
}
}
public static PermissionResource FromEntity(PermissionEntity entity)
{
return(new PermissionResource()
{
Name = entity.Name,
Description = entity.Description
});
}
private void ApplyPermissionForWeb(PermissionEntity pentity, SPWeb web)
{
try
{
SPSecurity.RunWithElevatedPrivileges(delegate()
{
SPUtility.ValidateFormDigest();
using (SPSite elevatedSite = new SPSite(web.Site.ID))
{
using (SPWeb elevatedWeb = elevatedSite.OpenWeb(web.ID))
{
if (pentity.PermissionType == "Inherit")
{
if (!elevatedWeb.IsRootWeb)
{
elevatedWeb.ResetRoleInheritance();
}
}
else if (pentity.PermissionType == "Unique")
{
if (!elevatedWeb.IsRootWeb)
{
elevatedWeb.BreakRoleInheritance(false);
}
ClearPermissions(elevatedWeb);
DeleteAllGroupsAndUsers(elevatedWeb);
foreach (RoleEntity rentity in pentity.Roles)
{
if (rentity.Type == RoleTypeEnum.SharePointGroup)
{
DeleteGroup(elevatedWeb, rentity.AssignmentName);
CreateGroup(elevatedWeb, rentity.AssignmentName, rentity.Owner);
AddUsersToGroup(elevatedWeb, rentity.AssignmentName, rentity.Users);
AssignPermissionLevels(elevatedWeb, rentity.AssignmentName, rentity.PermissionLevels);
}
else if ((rentity.Type == RoleTypeEnum.DomainGroup) ||
(rentity.Type == RoleTypeEnum.User))
{
AssignPermissionLevelsToNonSharePointGroup(elevatedWeb, rentity.AssignmentName, rentity.PermissionLevels);
}
}
}
}
}
});
}
catch (Exception ex)
{
SquadronContext.HandleException(ex);
}
}
public static async Task Seed(BaleaDbContext db)
{
if (!db.Roles.Any())
{
var alice = new SubjectEntity("Alice", "818727");
var bob = new SubjectEntity("Bob", "88421113");
db.Add(alice);
db.Add(bob);
await db.SaveChangesAsync();
var application = new ApplicationEntity(BaleaConstants.DefaultApplicationName, "Default application");
var viewGradesPermission = new PermissionEntity(Permissions.GradesRead);
var editGradesPermission = new PermissionEntity(Permissions.GradesEdit);
application.Permissions.Add(viewGradesPermission);
application.Permissions.Add(editGradesPermission);
var teacherRole = new RoleEntity(nameof(Roles.Teacher), "Teacher role");
teacherRole.Subjects.Add(new RoleSubjectEntity {
SubjectId = alice.Id
});
teacherRole.Permissions.Add(new RolePermissionEntity {
Permission = viewGradesPermission
});
teacherRole.Permissions.Add(new RolePermissionEntity {
Permission = editGradesPermission
});
application.Roles.Add(teacherRole);
var substituteRole = new RoleEntity(nameof(Roles.Substitute), "Substitute role");
substituteRole.Permissions.Add(new RolePermissionEntity {
Permission = viewGradesPermission
});
substituteRole.Permissions.Add(new RolePermissionEntity {
Permission = editGradesPermission
});
substituteRole.Subjects.Add(new RoleSubjectEntity {
SubjectId = bob.Id
});
application.Roles.Add(substituteRole);
application.Delegations.Add(new DelegationEntity(alice.Id, bob.Id, DateTime.UtcNow.AddDays(-1), DateTime.UtcNow.AddYears(1), false));
var studentRole = new RoleEntity(nameof(Roles.Student), "Student role");
var mapping = new MappingEntity("customer");
studentRole.Mappings.Add(new RoleMappingEntity {
Mapping = mapping
});
application.Roles.Add(studentRole);
var policy = new PolicyEntity("ValidateGrades",
@"policy substitute begin
rule A (DENY) begin
Subject.Role CONTAINS ""Substitute"" AND Resource.Controller = ""Grades"" AND Parameters.Value > 6
end
end");
application.Policies.Add(policy);
db.Applications.Add(application);
await db.SaveChangesAsync();
}
}
public async Task <bool> CheckAsync(string permission)
{
long[] roleIds = CurrentUser.Roles;
PermissionEntity permissionEntity = await _permissionRepo.Where(r => r.Name == permission).FirstAsync();
bool existPermission = await _rolePermissionRepo.Select
.AnyAsync(r => roleIds.Contains(r.RoleId) && r.PermissionId == permissionEntity.Id);
return(existPermission);
}
private PermissionDTO ToDTO(PermissionEntity permission)
{
PermissionDTO permissionDto = new PermissionDTO();
permissionDto.Name = permission.Name;
permissionDto.Description = permission.Description;
permissionDto.CreateDateTime = permission.CreateDateTime;
permissionDto.Id = permission.Id;
return(permissionDto);
}
public int AddPermission(UserEntity user, PermissionEntity p)
{
string sql = "insert into tb_permission_user values(@permission, @username)";
var pars = new SqlParameter[] {
new SqlParameter("@username", user.Username),
new SqlParameter("@permission", p.ID)
};
return(DataConfig.Instance.ExecuteNonQuery(sql, pars));
}
PermissionDTO ToDto(PermissionEntity permission)
{
PermissionDTO dto = new PermissionDTO();
dto.CreateDateTime = permission.CreateDateTIme;
dto.Description = permission.Description;
dto.Id = permission.Id;
dto.Name = permission.Name;
return(dto);
}
public static void Seeder(IDbSet <PermissionEntity> permissions)
{
var permissionOne = new PermissionEntity()
{
Name = "Add Project",
Description = "Add a new project"
};
permissions.AddOrUpdate(x => x.Name, permissionOne);
}
private ListRolePermissionDTO TODTO(PermissionEntity entity)
{
ListRolePermissionDTO dto = new ListRolePermissionDTO();
dto.CreateTime = entity.CreateTime;
dto.Description = entity.Description;
dto.Id = entity.Id;
dto.Name = entity.Name;
return(dto);
}
public PermissionDTO Entity2DTO(PermissionEntity a)
{
return(new PermissionDTO()
{
CreateDateTime = a.CreateDateTime,
Description = a.Description,
Id = a.Id,
Name = a.Name
});
}
public async Task DelPermission([FromQuery] int id)
{
var del = new PermissionEntity
{
Id = id
};
pcontext.Entry(del).State = EntityState.Deleted;
await pcontext.SaveChangesAsync();
}
private PermissionDTO ToDTO(PermissionEntity p)
{
PermissionDTO dto = new PermissionDTO();
dto.CreateDateTime = p.CreateDateTime;
dto.Description = p.Description;
dto.Id = p.Id;
dto.Name = p.Name;
return(dto);
}
public static PermissionEntity ToDataModel(this Permission source)
{
var result = new PermissionEntity
{
Id = source.Id,
Name = source.Name,
Description = source.Description
};
return(result);
}
public static Permission ToCoreModel(this PermissionEntity source)
{
var result = new Permission
{
Id = source.Id,
Name = source.Name,
Description = source.Description,
};
return(result);
}
// Call ERP DB to get information
public int GetFormData(ref PermissionEntity permissionEntity)
{
ProcurementPermissionM result = null;
// Query ProcurementPermission (main form) from mbsprog.T_procurement_permission_m
result = _procurementPermissionMDAO.Get(permissionEntity.FormDataID);
// Query ProcurementPermissionForm (sub form) from mbsprog.T_procurement_permission_d
// public class BaseFormEntity
// String FormDataID;
// String FormStatusCode;
// String FormSubmitUserID
// DateTime FormUpdateTime
//
// The permissionEntity.FormData is a sub from
filter.Matching("ProcurementPermissionID", result.ProcurementPermissionID);
result.Items = _procurementPermissionDDAO.Find(0, -1, filter, null, out totalRecords);
permissionEntity.FormData = result;
}
public ActionResult Edit(PermissionArea Area, PermissionPost Post, PermissionEntity<Comment> Comment)
{
var postEdit = Mapper.Map<Post, PostEdit>(Post.Entity);
var commentEdit = Mapper.Map<Comment, CommentEdit>(Comment.Entity);
ViewData["Post"] = postEdit;
ViewData["Comment"] = commentEdit;
ViewData["Salt"] = "CommentEdit";
return View("FormComment", Area);
}
public ActionResult Delete(PermissionArea Area, PermissionPost Post, PermissionEntity<Comment> Comment, ApType ApType, string Action)
{
if (String.IsNullOrWhiteSpace(Action) ||
!Action.Equals("Yes"))
{
return RedirectToAction("View", "Blog", new
{
postid = Post.Entity.ID,
title = Post.Entity.Title.ToUrlFriendly()
});
}
middleManagement.Comment.Delete(Comment.Entity);
return RedirectToAction("View", "Blog", new
{
postid = Post.Entity.ID,
title = Post.Entity.Title.ToUrlFriendly()
});
}
public ActionResult Delete(PermissionArea Area, PermissionPost Post, PermissionEntity<Comment> Comment)
{
var currentUser = userSession.GetCurrent();
var interop = Comment.ToInterop(Area.Entity, Post.Entity, currentUser);
ViewData["Post"] = interop;
ViewData["Salt"] = "CommentDelete";
return View("FormDelete", Area);
}
public int SyncPermissionToServer(PermissionEntity permission, ref DateTime actionTime, string targetFormCode, ref string actionUserCode, out string finalFormCode, out string actionSystemCode)
{
ProcurementPermissionM procurementPermissionM = GetProcurementPermissionM(permission);
//
SycnToServer(procurementPermissionM.SegNo, procurementPermissionM.ApplyID, ref actionUserCode, ref actionTime, targetFormCode, out finalFormCode, out isSycnToServerSuccess);
}
