Exemplo n.º 1
0
        public override void OnAuthorization(AuthorizationContext filterContext)
        {
            if (filterContext == null)
            {
                throw new ArgumentNullException(nameof(filterContext));
            }

            if (filterContext.ActionDescriptor.IsDefined(typeof(AllowAnonymousAttribute), true) ||
                filterContext.ActionDescriptor.ControllerDescriptor.IsDefined(typeof(AllowAnonymousAttribute), true))
            {
                return;//表示支持控制器、action的AllowAnonymousAttribute
            }

            string controllerName = filterContext.ActionDescriptor.ControllerDescriptor.ControllerName;
            string actionName     = filterContext.ActionDescriptor.ActionName;

            // 判断权限
            UserSession userSession = BaseExtensions.UserSession();

            if (userSession == null)
            {
                if (filterContext.HttpContext.Request.IsAjaxRequest())
                {
                    filterContext.Result = new ContentResult
                    {
                        Content = JsonUtil.SerializerObject(new ReturnResult(SuperConstants.AJAX_RETURN_STATE_LOGIN, "未登录"))
                    };
                }
                else
                {
                    filterContext.Result = new RedirectResult("/Login/Index");
                }
            }
            else
            {
                // 用户角色集合
                List <UserRoleVM> roleList = ServiceContainer.Resolve <IRoleService>().Entities(userSession.UserId);
                // 角色ID集合
                List <int> roleIdsByUser = roleList.Select(r => r.Role_Id).ToList();
                // 用户组角色集合
                List <UserRoleVM> roleListByGroupRole = ServiceContainer.Resolve <IRoleService>().EntitiesByGroupRole(userSession.UserId);
                List <int>        roleIdsByUserGroup  = roleListByGroupRole.Select(r => r.Role_Id).ToList();
                // 合并重复角色,获得当前用户涉及到的所有扮演的角色Role_Id
                roleIdsByUser.AddRange(roleIdsByUserGroup);
                var roleIds = roleIdsByUser.Distinct().ToList();
                // 权限表里面查询出这些角色涉及到的所有权限集合
                List <Sys_PermissionRole> permissions = ServiceContainer.Resolve <IRoleService>().GetPermissionRoleList()
                                                        .Where(t => roleIds.Contains(t.Role_Id))
                                                        .ToList();
                // 权限
                List <int> permissionId = permissions.Select(t => t.Permission_Id).ToList();

                IEnumerable <ModulePermissionVM> modulePermissionList = ServiceContainer.Resolve <IPermissionService>().GetModulePermissionList();
                List <ModulePermissionVM>        list = modulePermissionList.Where(t => permissionId.Contains(t.Id) && t.code == actionName && t.LinkUrl.Contains(controllerName)).ToList();
                if (list == null || list.Count == 0)
                {
                    if (filterContext.HttpContext.Request.IsAjaxRequest())
                    {
                        filterContext.Result = new ContentResult
                        {
                            Content = JsonUtil.SerializerObject(new ReturnResult(SuperConstants.AJAX_RETURN_STATE_LOGIN, "没有权限"))
                        };
                    }
                    else
                    {
                        filterContext.Result = new RedirectResult("/Home/NoPermissions");
                    }
                }
            }
        }
Exemplo n.º 2
0
 public UserSession UserSession()
 {
     return(BaseExtensions.UserSession());
 }