82 lines
3.2 KiB
C#
82 lines
3.2 KiB
C#
|
/*
|
||
|
*
|
||
|
* (c) Copyright Ascensio System Limited 2010-2018
|
||
|
*
|
||
|
* This program is freeware. You can redistribute it and/or modify it under the terms of the GNU
|
||
|
* General Public License (GPL) version 3 as published by the Free Software Foundation (https://www.gnu.org/copyleft/gpl.html).
|
||
|
* In accordance with Section 7(a) of the GNU GPL its Section 15 shall be amended to the effect that
|
||
|
* Ascensio System SIA expressly excludes the warranty of non-infringement of any third-party rights.
|
||
|
*
|
||
|
* THIS PROGRAM IS DISTRIBUTED WITHOUT ANY WARRANTY; WITHOUT EVEN THE IMPLIED WARRANTY OF MERCHANTABILITY OR
|
||
|
* FITNESS FOR A PARTICULAR PURPOSE. For more details, see GNU GPL at https://www.gnu.org/copyleft/gpl.html
|
||
|
*
|
||
|
* You can contact Ascensio System SIA by email at sales@onlyoffice.com
|
||
|
*
|
||
|
* The interactive user interfaces in modified source and object code versions of ONLYOFFICE must display
|
||
|
* Appropriate Legal Notices, as required under Section 5 of the GNU GPL version 3.
|
||
|
*
|
||
|
* Pursuant to Section 7 § 3(b) of the GNU GPL you must retain the original ONLYOFFICE logo which contains
|
||
|
* relevant author attributions when distributing the software. If the display of the logo in its graphic
|
||
|
* form is not reasonably feasible for technical reasons, you must include the words "Powered by ONLYOFFICE"
|
||
|
* in every copy of the program you distribute.
|
||
|
* Pursuant to Section 7 § 3(e) we decline to grant you any rights under trademark law for use of our trademarks.
|
||
|
*
|
||
|
*/
|
||
|
|
||
|
|
||
|
using System;
|
||
|
using System.Collections.Generic;
|
||
|
using System.Linq;
|
||
|
using ASC.Common.Security;
|
||
|
using ASC.Common.Security.Authentication;
|
||
|
using ASC.Common.Security.Authorizing;
|
||
|
using ASC.Core.Users;
|
||
|
using AuthConst = ASC.Common.Security.Authorizing.Constants;
|
||
|
using ConfConst = ASC.Core.Configuration.Constants;
|
||
|
|
||
|
namespace ASC.Core.Security.Authorizing
|
||
|
{
|
||
|
class RoleProvider : IRoleProvider
|
||
|
{
|
||
|
public List<IRole> GetRoles(ISubject account)
|
||
|
{
|
||
|
var roles = new List<IRole>();
|
||
|
if (!(account is ISystemAccount))
|
||
|
{
|
||
|
if (account is IRole)
|
||
|
{
|
||
|
roles = GetParentRoles(account.ID).ToList();
|
||
|
}
|
||
|
else if (account is IUserAccount)
|
||
|
{
|
||
|
roles = CoreContext.UserManager
|
||
|
.GetUserGroups(account.ID, IncludeType.Distinct | IncludeType.InParent)
|
||
|
.Select(g => (IRole) g)
|
||
|
.ToList();
|
||
|
}
|
||
|
}
|
||
|
return roles;
|
||
|
}
|
||
|
|
||
|
public bool IsSubjectInRole(ISubject account, IRole role)
|
||
|
{
|
||
|
return CoreContext.UserManager.IsUserInGroup(account.ID, role.ID);
|
||
|
}
|
||
|
|
||
|
private static List<IRole> GetParentRoles(Guid roleID)
|
||
|
{
|
||
|
var roles = new List<IRole>();
|
||
|
var gi = CoreContext.UserManager.GetGroupInfo(roleID);
|
||
|
if (gi != null)
|
||
|
{
|
||
|
var parent = gi.Parent;
|
||
|
while (parent != null)
|
||
|
{
|
||
|
roles.Add(parent);
|
||
|
parent = parent.Parent;
|
||
|
}
|
||
|
}
|
||
|
return roles;
|
||
|
}
|
||
|
}
|
||
|
}
|