protected override void HandleUnauthorizedRequest(AuthorizationContext filterContext)
{
if (ReturnEmptyResult || filterContext.IsChildAction)
{
filterContext.Result = new EmptyResult();
}
else
{
if (filterContext.Controller.GetType().GetCustomAttributes(typeof(MrCMSAuthorizeAttribute), true).Any())
{
if (filterContext.HttpContext.User.Identity.IsAuthenticated)
{
IMrCMSRoutingErrorHandler routingErrorHandler = MrCMSApplication.Get <IMrCMSRoutingErrorHandler>();
RouteData routeData = filterContext.RouteData;
routeData.Route = RouteTable.Routes.Last();
routeData.DataTokens.Remove("area");
RequestContext requestContext = new RequestContext(filterContext.HttpContext, routeData);
string message = string.Format("Not allowed to view {0}", requestContext.HttpContext.Request.Url);
int code = CurrentRequestData.CurrentUser != null ? 403 : 401;
routingErrorHandler.HandleError(requestContext, code, new HttpException(code, message));
filterContext.Result = new EmptyResult();
}
else
{
base.HandleUnauthorizedRequest(filterContext);
}
}
}
}
public override void InitHelpers()
{
base.InitHelpers();
if (CurrentRequestData.DatabaseIsInstalled)
{
_kernel = MrCMSApplication.Get <IKernel>();
_stringResourceProvider = MrCMSApplication.Get <IStringResourceProvider>();
GetCurrentLayout = MrCMSApplication.Get <IGetCurrentLayout>();
}
}
public override void OnActionExecuted(ActionExecutedContext filterContext)
{
var result = filterContext.Result as ViewResult;
if (result == null)
{
return;
}
var webpage = result.Model as Webpage;
if (webpage == null)
{
return;
}
MrCMSApplication.Get <IProcessWebpageViews>().Process(result, webpage);
}
private static void SetSiteFilter(Site value)
{
ISession session = MrCMSApplication.Get <ISession>();
if (value != null)
{
session.EnableFilter("SiteFilter").SetParameter("site", value.Id);
}
else
{
IFilter enabledFilter = session.GetEnabledFilter("SiteFilter");
if (enabledFilter != null)
{
session.DisableFilter("SiteFilter");
}
}
}
protected override bool AuthorizeCore(System.Web.HttpContextBase httpContext)
{
if (!CurrentRequestData.CurrentUser.IsActive)
{
return(false);
}
object idVal;
if (httpContext.Request.RequestContext.RouteData.Values.TryGetValue("id", out idVal))
{
int id;
if (int.TryParse(Convert.ToString(idVal), out id))
{
var o = MrCMSApplication.Get <ISession>().Get(_type, id);
if (o == null)
{
return(false);
}
return(new TypeACLRule().CanAccess(CurrentRequestData.CurrentUser, _operation, o.GetType().FullName));
}
}
return(false);
}
