/// <summary> /// 某个角色是否有相应的权限 /// </summary> /// <param name="userInfo">用户</param> /// <param name="roleId">角色主键</param> /// <param name="permissionItemCode">权限编号</param> /// <returns>是否有权限</returns> public bool IsAuthorizedByRole(BaseUserInfo userInfo, string roleId, string permissionItemCode) { // 写入调试信息 #if (DEBUG) int milliStart = BaseBusinessLogic.StartDebug(userInfo, MethodBase.GetCurrentMethod()); #endif // 加强安全验证防止未授权匿名调用 #if (!DEBUG) LogOnService.UserIsLogOn(userInfo); #endif bool returnValue = false; using (IDbHelper dbHelper = DbHelperFactory.GetHelper(BaseSystemInfo.UserCenterDbType)) { try { dbHelper.Open(UserCenterDbConnection); // 是超级管理员,就不用继续判断权限了 returnValue = roleId.Equals("Administrators"); if (returnValue) { return(returnValue); } BasePermissionManager permissionManager = new BasePermissionManager(dbHelper, userInfo); returnValue = permissionManager.CheckPermissionByRole(roleId, permissionItemCode); BaseLogManager.Instance.Add(dbHelper, userInfo, this.serviceName, AppMessage.PermissionService_IsAuthorizedByRole, MethodBase.GetCurrentMethod()); } catch (Exception ex) { BaseExceptionManager.LogException(dbHelper, userInfo, ex); throw ex; } finally { dbHelper.Close(); } } // 写入调试信息 #if (DEBUG) BaseBusinessLogic.EndDebug(MethodBase.GetCurrentMethod(), milliStart); #endif return(returnValue); }
/// <summary> /// 某个角色是否有相应的权限 /// </summary> /// <param name="userInfo">用户</param> /// <param name="roleId">角色主键</param> /// <param name="permissionCode">权限编号</param> /// <returns>是否有权限</returns> public bool CheckPermissionByRole(BaseUserInfo userInfo, string roleId, string permissionCode) { bool result = false; var parameter = ServiceInfo.Create(userInfo, MethodBase.GetCurrentMethod()); ServiceUtil.ProcessUserCenterReadDb(userInfo, parameter, (dbHelper) => { // 是超级管理员,就不用继续判断权限了 result = roleId.Equals("Administrators"); if (!result) { var manager = new BasePermissionManager(dbHelper, userInfo); result = manager.CheckPermissionByRole(userInfo.SystemCode, roleId, permissionCode); } }); return(result); }