private static void SecuritySetUp()
{
using (PermissionsProviderContext dbContext = new PermissionsProviderContext()) {
SecurityUser user = new SecurityUser()
{
Name = "John", Password = "******"
};
SecurityRole roleForUser = new SecurityRole();
SecurityUser admin = new SecurityUser()
{
Name = "Admin", Password = "******"
};
SecurityRole roleForAdmin = new SecurityRole();
// "Address" member of contacts "Ezra" will be denied
roleForUser.AddMemberPermission <EFCoreDemoDbContext, Contact>(SecurityOperation.Read, OperationState.Deny, "Address", (db, obj) => obj.Name == "Ezra");
// Contact "Kevin" will be denied
roleForUser.AddObjectPermission <EFCoreDemoDbContext, Contact>(SecurityOperation.Read, OperationState.Deny, (db, obj) => obj.Address == "California");
user.AddRole(roleForUser);
admin.AddRole(roleForAdmin);
dbContext.Add(user);
dbContext.Add(admin);
dbContext.SaveChanges();
}
}
private static void SecuritySetUp()
{
using (PermissionsProviderContext dbContext = new PermissionsProviderContext()) {
SecurityUser user = new SecurityUser()
{
Name = "John", Password = "******"
};
SecurityRole roleForUser = new SecurityRole();
SecurityUser admin = new SecurityUser()
{
Name = "Admin", Password = "******"
};
SecurityRole roleForAdmin = new SecurityRole();
ContactSecuritySetUp(roleForUser);
DepartmentSecuritySetUp(roleForUser);
TaskSecuritySetUp(roleForUser);
user.AddRole(roleForUser);
admin.AddRole(roleForAdmin);
dbContext.Add(user);
dbContext.Add(admin);
dbContext.SaveChanges();
}
}
private static bool TryAuthenticate(string userName, string password, out IPrincipal principal)
{
using (PermissionsProviderContext dbContext = new PermissionsProviderContext()) {
if (dbContext.Users.Any(p => p.Name == userName && p.Password == password))
{
principal = new GenericPrincipal(new GenericIdentity(userName), new string[] { "Users" });
return(true);
}
else
{
principal = null;
return(false);
}
}
}
