(精华)2020年6月29日 C#类库 接口权限校验
【摘要】
using Coldairarrow.Business.Base_Manage;
using Coldairarrow.IBusiness;
using Coldairarrow.Util;
using ...
using Coldairarrow.Business.Base_Manage;
using Coldairarrow.IBusiness;
using Coldairarrow.Util;
using Microsoft.AspNetCore.Mvc.Filters;
using Microsoft.Extensions.DependencyInjection;
using System;
using System.Threading.Tasks;
namespace Core.Api
{
/// <summary>
/// 接口权限校验
/// </summary>
[AttributeUsage(AttributeTargets.Class | AttributeTargets.Method, AllowMultiple = true)]
public class ApiPermissionAttribute : BaseActionFilterAsync
{
public ApiPermissionAttribute(string permissionValue)
{
if (permissionValue.IsNullOrEmpty())
throw new Exception("permissionValue不能为空");
_permissionValue = permissionValue;
}
public string _permissionValue { get; }
/// <summary>
/// Action执行之前执行
/// </summary>
/// <param name="context">过滤器上下文</param>
public async override Task OnActionExecuting(ActionExecutingContext context)
{
if (context.ContainsFilter<NoApiPermissionAttribute>())
return;
IServiceProvider serviceProvider = context.HttpContext.RequestServices;
IPermissionBusiness _permissionBus = serviceProvider.GetService<IPermissionBusiness>();
IOperator _operator = serviceProvider.GetService<IOperator>();
var permissions = await _permissionBus.GetUserPermissionValuesAsync(_operator.UserId);
if (!permissions.Contains(_permissionValue))
context.Result = Error("权限不足!");
}
}
}
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
namespace Core.Api
{
/// <summary>
/// 忽略接口权限校验
/// </summary>
public class NoApiPermissionAttribute : BaseActionFilterAsync
{
}
}
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
文章来源: codeboy.blog.csdn.net,作者:愚公搬代码,版权归原作者所有,如需转载,请联系作者。
原文链接:codeboy.blog.csdn.net/article/details/107016409
【版权声明】本文为华为云社区用户转载文章,如果您发现本社区中有涉嫌抄袭的内容,欢迎发送邮件进行举报,并提供相关证据,一经查实,本社区将立刻删除涉嫌侵权内容,举报邮箱:
cloudbbs@huaweicloud.com
- 点赞
- 收藏
- 关注作者
评论(0)