- servicestack/
servicestack Servicestack角色用户和组
servicestack Servicestack角色用户和组
因为角色不包含权限。我对ServiceStack中的角色和权限有点困惑。看来他们真的是一回事?我想实现一个具有角色和权限的组。基于servicestack默认实现,我认为无法扩展提供程序并获取嵌套信息 我如何实现这一点,并且仍然使用身份验证属性。 如果我有一个属性
[RequiredPermission("CanAccessPerm")]
That is in Role:HasAccessRole That is in Group:HasAccessGroup
container.Register<IAuthRepository>(c =>
new MyOrmLiteAuthRepository(c.Resolve<IDbConnectionFactory>())
{
UseDistinctRoleTables = AppSettings.Get("UseDistinctRoleTables", true),
});
CustomAuthRepo
public class MyOrmLiteAuthRepository : OrmLiteAuthRepository
{
public MyOrmLiteAuthRepository(IDbConnectionFactory dbFactory) : base(dbFactory) { }
public MyOrmLiteAuthRepository(IDbConnectionFactory dbFactory, string namedConnnection = null)
: base(dbFactory, namedConnnection)
{
DbFactory = dbFactory;
NamedConnnection = namedConnnection;
}
public IDbConnectionFactory DbFactory { get; set; }
public string NamedConnnection { get; set; }
public override ICollection<string> GetPermissions(string userAuthId)
{
var permissions = base.GetPermissions(userAuthId);
using (var ss = HostContext.ResolveService<SecurityService>(new BasicRequest()))
{
permissions = ss.UserPermissions(Convert.ToInt32(userAuthId));
}
return permissions;
}
public override bool HasPermission(string userAuthId, string permission)
{
var hasPermission = base.HasPermission(userAuthId, permission);
using (var ss = HostContext.ResolveService<SecurityService>(new BasicRequest()))
{
hasPermission = ss.UserHasPermInRoleOrGroup(permission, Convert.ToInt32(userAuthId));
}
return hasPermission;
}
}
container.Register(c=>
新的MyOrmLiteAuthRepository(c.Resolve())
{
UseDistinctRoleTables=AppSettings.Get(“UseDistinctRoleTables”,true),
});
客户授权报告
公共类MyOrmLiteAuthRepository:OrmLiteAuthRepository
{
公共MyOrmLiteAuthRepository(IDbConnectionFactory dbFactory):基(dbFactory){}
公共MyOrmLiteAuthRepository(IDbConnectionFactory dbFactory,字符串名为DConnection=null)
:base(dbFactory,namedconnection)
{
DbFactory=DbFactory;
NamedConnection=NamedConnection;
}
公共IDbConnectionFactory数据库工厂{get;set;}
公共字符串namedConnection{get;set;}
公共覆盖ICollection GetPermissions(字符串userAuthId)
{
var permissions=base.GetPermissions(userAuthId);
使用(var ss=HostContext.ResolveService(new BasicRequest()))
{
permissions=ss.UserPermissions(Convert.ToInt32(userAuthId));
}
返回权限;
}
public override bool HasPermission(字符串userAuthId,字符串权限)
{
var hasPermission=base.hasPermission(userAuthId,permission);
使用(var ss=HostContext.ResolveService(new BasicRequest()))
{
hasPermission=ss.UserHasPermisnRoleOrGroup(权限,Convert.ToInt32(userAuthId));
}
未经许可返回;
}
}
OnAuthenticated()在自己的自定义AuthProvider中实现此功能AuthUserSession权限集。如果未使用自定义AuthProvider,则可以通过实现OnAuthenticated()
来修改用户会话
或者,如果您使用的是AuthRepository,如或mliteAuthRepository
,则可以通过覆盖其GetPermissions()
和HasPermission()来更改权限的管理方式
API来检查用户角色分配给他们的权限,您需要在带外表中维护这些权限
重写OrmLiteAuthRepository
OrmLiteAuthRepository实现了IManageRoles
,因此在需要时,您可以将IAuthRepository
转换为IManageRoles
,例如:
var manageRoles = (IManageRoles)container.Resolve<IAuthRepository>();
我再次更新了问题。“我现在就快到了。”史蒂夫科尔曼:你能不能用一个新问题问新问题,而不是用新问题更新现有问题。确切的问题是什么,您使用的源代码中有哪些没有调用自定义提供者API?我问了一个新问题。很抱歉,由于我尚未解决原始查询,因此我正在扩展此查询。我喜欢把所有的代码都发布到网上。在一个地方
public class MyOrmLiteAuthRepository : OrmLiteAuthRepository
{
public MyOrmLiteAuthRepository(IDbConnectionFactory dbFactory) : base(dbFactory) { }
public MyOrmLiteAuthRepository(IDbConnectionFactory dbFactory, string namedConnnection = null)
: base(dbFactory, namedConnnection) {}
public override ICollection<string> GetPermissions(string userAuthId)
{
return base.GetPermissions(userAuthId);
}
public override bool HasPermission(string userAuthId, string permission)
{
return base.HasPermission(userAuthId, permission);
}
}