Permissions & Authorization for Users #24
Initial Release; Includes Database and MVC refactoring
This commit is contained in:
Gary Sharp
@@ -1,16 +1,17 @@
|
||||
using System;
|
||||
using System.Collections.Generic;
|
||||
using System.Linq;
|
||||
using System.Web;
|
||||
using System.Web.Mvc;
|
||||
using Disco.Models.Repository;
|
||||
using Disco.BI.Extensions;
|
||||
using Disco.Services.Plugins.Features.UIExtension;
|
||||
using Disco.BI.Extensions;
|
||||
using Disco.Models.UI.User;
|
||||
using Disco.Services.Authorization;
|
||||
using Disco.Services.Authorization.Roles;
|
||||
using Disco.Services.Plugins.Features.UIExtension;
|
||||
using Disco.Services.Users;
|
||||
using Disco.Services.Web;
|
||||
using System;
|
||||
using System.Linq;
|
||||
using System.Web.Mvc;
|
||||
|
||||
namespace Disco.Web.Controllers
|
||||
{
|
||||
public partial class UserController : dbAdminController
|
||||
public partial class UserController : AuthorizedDatabaseController
|
||||
{
|
||||
#region Index
|
||||
public virtual ActionResult Index()
|
||||
@@ -25,40 +26,62 @@ namespace Disco.Web.Controllers
|
||||
#endregion
|
||||
|
||||
#region Show
|
||||
[DiscoAuthorize(Claims.User.Show)]
|
||||
public virtual ActionResult Show(string id)
|
||||
{
|
||||
var m = new Models.User.ShowModel();
|
||||
|
||||
dbContext.Configuration.LazyLoadingEnabled = true;
|
||||
Database.Configuration.LazyLoadingEnabled = true;
|
||||
|
||||
// Update User Cache
|
||||
// Do this first so the Database is updated if necessary
|
||||
try
|
||||
{
|
||||
Disco.BI.UserBI.UserCache.GetUser(id, dbContext, true);
|
||||
UserService.GetUser(id, Database, true);
|
||||
}
|
||||
catch (ArgumentException)
|
||||
{
|
||||
// Ignore if User not in Active Directory anymore
|
||||
}
|
||||
|
||||
m.User = dbContext.Users.Where(um => um.Id == id).FirstOrDefault();
|
||||
m.User = Database.Users
|
||||
.Include("DeviceUserAssignments.Device.DeviceModel").Include("UserAttachments")
|
||||
.FirstOrDefault(um => um.Id == id);
|
||||
|
||||
if (m.User == null)
|
||||
throw new ArgumentException("Unknown User Id", "id");
|
||||
|
||||
m.Jobs = new Disco.Models.BI.Job.JobTableModel()
|
||||
if (Authorization.Has(Claims.User.ShowJobs))
|
||||
{
|
||||
ShowStatus = true,
|
||||
ShowDevice = true,
|
||||
ShowUser = false,
|
||||
IsSmallTable = false,
|
||||
HideClosedJobs = true,
|
||||
EnablePaging = false
|
||||
};
|
||||
m.Jobs.Fill(dbContext, BI.JobBI.Searching.BuildJobTableModel(dbContext).Where(j => j.UserId == id).OrderByDescending(j => j.Id));
|
||||
m.Jobs = new Disco.Models.BI.Job.JobTableModel()
|
||||
{
|
||||
ShowStatus = true,
|
||||
ShowDevice = true,
|
||||
ShowUser = false,
|
||||
IsSmallTable = false,
|
||||
HideClosedJobs = true,
|
||||
EnablePaging = false
|
||||
};
|
||||
m.Jobs.Fill(Database, BI.JobBI.Searching.BuildJobTableModel(Database).Where(j => j.UserId == id).OrderByDescending(j => j.Id));
|
||||
}
|
||||
|
||||
m.DocumentTemplates = m.User.AvailableDocumentTemplates(dbContext, DiscoApplication.CurrentUser, DateTime.Now);
|
||||
try
|
||||
{
|
||||
if (Authorization.Has(Claims.User.ShowAuthorization))
|
||||
{
|
||||
var userAuth = UserService.GetAuthorization(id);
|
||||
var claims = userAuth.RoleTokens.Cast<RoleToken>().Select(rt => rt.Claims).ToArray();
|
||||
if (claims.Length > 0)
|
||||
m.ClaimNavigator = Claims.RoleClaimNavigator.BuildClaimTree(claims);
|
||||
}
|
||||
}
|
||||
catch (ArgumentException)
|
||||
{
|
||||
// Ignore if User not in Active Directory anymore
|
||||
}
|
||||
|
||||
if (Authorization.Has(Claims.User.Actions.GenerateDocuments))
|
||||
m.DocumentTemplates = m.User.AvailableDocumentTemplates(Database, UserService.CurrentUser, DateTime.Now);
|
||||
|
||||
// UI Extensions
|
||||
UIExtensions.ExecuteExtensions<UserShowModel>(this.ControllerContext, m);
|
||||
|
||||
Reference in New Issue
Block a user