zoukankan      html  css  js  c++  java
  • MVC权限验证过滤器

    Action属性,权限设定属性  
      [AttributeUsage(AttributeTargets.Method, Inherited = true, AllowMultiple = false)]
        public class PurviewEnumAttribute : Attribute
        {
            public string PurviewString { get; set; }
     
            public PurviewEnumAttribute(string purview)
            {
                this.PurviewString = purview;
            }
        }

    Action属性,权限验证属性
     
      [AttributeUsage(AttributeTargets.Method, AllowMultiple = false, Inherited = true)]
        public class SuperICAuthorizeAttribute : AuthorizeAttribute
        {
            public string[] ActionPowers { get; set; }
     
            public override void OnAuthorization(System.Web.Mvc.AuthorizationContext filterContext)
            {
                string controllerName = filterContext.ActionDescriptor.ControllerDescriptor.ControllerName;
                string actionName = filterContext.ActionDescriptor.ActionName;
                object[] attributes = filterContext.ActionDescriptor.GetCustomAttributes(typeof(PurviewEnumAttribute), true);
                if (attributes != null && attributes.Count() > 0)
                {
                    string power = (attributes[0] as PurviewEnumAttribute).PurviewString;
                    this.ActionPowers = power.Split(new string[] { "," }, StringSplitOptions.RemoveEmptyEntries);
                }
                base.OnAuthorization(filterContext);
            }
     
            protected override bool AuthorizeCore(HttpContextBase httpContext)
            {
                if (httpContext == null)
                {
                    return false;
                }
                if (ActionPowers == null)
                {
                    return true;
                }
                if (ActionPowers.Length == 0)
                {
                    return true;
                }
                // if (ActionPowers.Any(httpContext.User.IsInRole))  
                if (ActionPowers.Any((new string[]{"1","2","3","4"}).Contains))
                {
                    return true;
                }
                else
                {
                    return false;
                }
            }
        } 

    使用:Index需要权限为2的才能够进入,SuperICAuthorize过滤器中验证是否具有2的权限
    [PurviewEnum("2")]
    [SuperICAuthorize]
    public ActionResult Index() 
  • 相关阅读:
    GO語言基礎教程:數組,切片,map
    GO語言視頻教程下載
    GO語言基礎教程:流程控制
    GO語言基礎教程:數據類型,變量,常量
    GO語言基礎教程:Hello world!
    GO語言基礎教程:序章
    騰訊RTX的API開發,給RTX開個天窗
    RTX的api開發實例
    [轉]redis;mongodb;memcache三者的性能比較
    [轉載]史上最强php生成pdf文件,html转pdf文件方法
  • 原文地址:https://www.cnblogs.com/shi2310/p/7405923.html
Copyright © 2011-2022 走看看