private void CreateUsersRol()
{
Rol usersRole = FindObject <Rol>(new BinaryOperator(nameof(PermissionPolicyRole.Name), Rol.USERS_ROL_NAME));
if (usersRole == null)
{
usersRole = CreateObject <Rol>();
usersRole.Name = Rol.USERS_ROL_NAME;
usersRole.AddObjectPermission <PermissionPolicyUser>(SecurityOperations.Read, "[Oid] = CurrentUserId()", SecurityPermissionState.Allow);
usersRole.AddNavigationPermission(@"Application/NavigationItems/Items/Default/Items/MyDetails", SecurityPermissionState.Allow);
usersRole.AddMemberPermission <PermissionPolicyUser>(SecurityOperations.Write, nameof(PermissionPolicyUser.ChangePasswordOnFirstLogon), "[Oid] = CurrentUserId()", SecurityPermissionState.Allow);
usersRole.AddMemberPermission <PermissionPolicyUser>(SecurityOperations.Write, "StoredPassword", "[Oid] = CurrentUserId()", SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <PermissionPolicyRole>(SecurityOperations.Read, SecurityPermissionState.Deny);
usersRole.AddTypePermissionsRecursively <ModelDifference>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <ModelDifferenceAspect>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <ModelDifference>(SecurityOperations.Create, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <ModelDifferenceAspect>(SecurityOperations.Create, SecurityPermissionState.Allow);
//City
usersRole.AddNavigationPermission(City.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <City>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <City>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleBrand
usersRole.AddNavigationPermission(VehicleBrand.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleBrand>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleBrand>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleType
usersRole.AddNavigationPermission(VehicleType.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleType>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleType>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleModel
usersRole.AddNavigationPermission(VehicleModel.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleModel>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleModel>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleInsurement
usersRole.AddNavigationPermission(VehicleInsurement.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleInsurement>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleInsurement>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleInsurementDetail
usersRole.AddTypePermissionsRecursively <VehicleInsurementDetail>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleInsurementDetail>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleDealer
usersRole.AddNavigationPermission(VehicleDealer.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleDealer>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleDealer>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleDealerVehicleBrand
usersRole.AddTypePermissionsRecursively <VehicleDealerVehicleBrand>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleDealerVehicleBrand>(SecurityOperations.Create, SecurityPermissionState.Allow);
//Person
usersRole.AddNavigationPermission(BusinessObjects.Person.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <BusinessObjects.Person>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <BusinessObjects.Person>(SecurityOperations.Create, SecurityPermissionState.Allow);
//Employee
usersRole.AddNavigationPermission(Employee.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <Employee>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <Employee>(SecurityOperations.Create, SecurityPermissionState.Allow);
//Customer
usersRole.AddNavigationPermission(Customer.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <Customer>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <Customer>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehicleQuotation
usersRole.AddNavigationPermission(VehicleQuotation.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleQuotation>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehicleQuotation>(SecurityOperations.Create, SecurityPermissionState.Allow);
//VehiclePolicy
usersRole.AddNavigationPermission(VehiclePolicy.PATH_NAVIGATION, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehiclePolicy>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow);
usersRole.AddTypePermissionsRecursively <VehiclePolicy>(SecurityOperations.Create, SecurityPermissionState.Allow);
}
}
