abp授权原理
PermissionRequirement
public class PermissionRequirement : AuthorizationHandler<PermissionRequirement>, IAuthorizationRequirement
{
public string PermissionName { get; set; }
public PermissionRequirement(string permissionName)
{
PermissionName = permissionName;
}
protected override async Task HandleRequirementAsync(AuthorizationHandlerContext context, PermissionRequirement requirement)
{
// 获取用户权限
var userPermissions = PermissionService.GetPermissions(context.User.Identity?.Name);
if (userPermissions != null && userPermissions.Contains(requirement.PermissionName))
{
context.Succeed(requirement);
}
}
}
PermissionAuthorizationPolicyProvider
public class PermissionAuthorizationPolicyProvider : DefaultAuthorizationPolicyProvider, IAuthorizationPolicyProvider
{
public PermissionAuthorizationPolicyProvider(IOptions<AuthorizationOptions> options) : base(options)
{
}
public override async Task<AuthorizationPolicy?> GetPolicyAsync(string policyName)
{
var policy = await base.GetPolicyAsync(policyName);
if (policy != null)
{
return policy;
}
var builder = new AuthorizationPolicyBuilder();
builder.AddRequirements(new PermissionRequirement(policyName));
return builder.Build();
}
}
PermissionService
public class PermissionService
{
public static List<string> GetPermissions(string? name)
{
return new List<string>
{
"auth1",
"auth2",
};
}
}
使用
builder.Services.AddTransient<IAuthorizationPolicyProvider, PermissionAuthorizationPolicyProvider>();
[Authorize("auth1")]
public IActionResult Privacy()
{
return View();
}
【推荐】国内首个AI IDE,深度理解中文开发场景,立即下载体验Trae
【推荐】编程新体验,更懂你的AI,立即体验豆包MarsCode编程助手
【推荐】抖音旗下AI助手豆包,你的智能百科全书,全免费不限次数
【推荐】轻量又高性能的 SSH 工具 IShell:AI 加持,快人一步
· 震惊!C++程序真的从main开始吗?99%的程序员都答错了
· 【硬核科普】Trae如何「偷看」你的代码?零基础破解AI编程运行原理
· 单元测试从入门到精通
· 上周热点回顾(3.3-3.9)
· winform 绘制太阳,地球,月球 运作规律