IlyaSobolev/DocSpace-buildtools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Core.Common: added rules matching support

Browse Source
This commit is contained in:
Maksim Chegulov 2022-12-06 01:55:33 +03:00
parent 3ee45f256b
commit 1596b4392b
1 changed files with 25 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
common/ASC.Core.Common/Security/UserSecurityProvider.cs
View File

@ -24,37 +24,51 @@
// content are licensed under the terms of the Creative Commons Attribution-ShareAlike 4.0 // content are licensed under the terms of the Creative Commons Attribution-ShareAlike 4.0
// International. See the License terms at http://creativecommons.org/licenses/by-sa/4.0/legalcode // International. See the License terms at http://creativecommons.org/licenses/by-sa/4.0/legalcode
using AuthConstants = ASC.Common.Security.Authorizing.Constants;
namespace ASC.Core.Users; namespace ASC.Core.Users;
public class UserSecurityProvider : ISecurityObject public class UserSecurityProvider : SecurityObject
{ {
public Type ObjectType { get; private set; } private readonly EmployeeType _employeeType;
public object SecurityId { get; private set; }
public string FullId => AzObjectIdHelper.GetFullObjectId(this);
public UserSecurityProvider(Guid userId) public UserSecurityProvider(Guid userId)
{ {
SecurityId = userId; SecurityId = userId;
ObjectType = typeof(UserInfo); ObjectType = typeof(UserInfo);
FullId = AzObjectIdHelper.GetFullObjectId(this);
ObjectRolesSupported = true;
} }
public bool ObjectRolesSupported => true; public UserSecurityProvider(Guid userId, EmployeeType employeeType) : this(userId)
{
_employeeType = employeeType;
}
public IEnumerable<IRole> GetObjectRoles(ISubject account, ISecurityObjectId objectId, SecurityCallContext callContext) public override IEnumerable<IRole> GetObjectRoles(ISubject account, ISecurityObjectId objectId, SecurityCallContext callContext)
{ {
var roles = new List<IRole>(); var roles = new List<IRole>();
if (account.ID.Equals(objectId.SecurityId)) if (account.ID.Equals(objectId.SecurityId))
{ {
roles.Add(ASC.Common.Security.Authorizing.Constants.Self); roles.Add(AuthConstants.Self);
} }
return roles; return roles;
} }
public bool InheritSupported => false; protected override IEnumerable<IRole> GetTargetRoles(IRoleProvider roleProvider)
public ISecurityObjectId InheritFrom(ISecurityObjectId objectId)
{ {
throw new NotImplementedException(); return _employeeType switch
{
EmployeeType.DocSpaceAdmin => new[] { AuthConstants.DocSpaceAdmin },
EmployeeType.RoomAdmin => new[] { AuthConstants.RoomAdmin },
EmployeeType.User => new[] { AuthConstants.User },
_ => throw new NotImplementedException(),
};
}
protected override IRuleData GetRuleData()
{
return null;
} }
} }