发表新帖
发表新帖

How to get current user privileges in MS Dynamics CRM on server side

后端 未结
关注
2 1236
时光取名叫无心
时光取名叫无心 2020-12-11 19:22

I\'m working on MS CRM plugin, and it should be able to determine whether the current user has write access to the current entity. I don\'t know how to approach this task.

相关标签:
2条回答
  • 南笙
    2020-12-11 20:15

    Here is what I have come up with — this code will check, does current user has given privilege on current record:

    // Requesting user's access rights to current record
var principalAccessRequest = new RetrievePrincipalAccessRequest
{
    Principal = new EntityReference("systemuser", localContext.PluginExecutionContext.UserId),
    Target = new EntityReference(localContext.PluginExecutionContext.PrimaryEntityName, localContext.PluginExecutionContext.PrimaryEntityId)
};

// Response will contain AccessRights mask, like AccessRights.WriteAccess | AccessRights.ReadAccess | ...
var principalAccessResponse = (RetrievePrincipalAccessResponse)localContext.OrganizationService.Execute(principalAccessRequest);

if ((principalAccessResponse.AccessRights & AccessRights.WriteAccess) != AccessRights.None)
{
    ...
    ...
    ...
}

    The code inside if statement will be executed if user has WriteAccess to current record.

    0 讨论(0)
  • 情书的邮戳
    2020-12-11 20:28

    According to Matt's Answer:

    1. Retrieve on the entity privilege
    2. Join on entity roleprivilege where privilege.privilegeid = roleprivilege.privilegeid
    3. Join on entity systemuserrole where systemuserrole.roleid = roleprivileges.roleid and systemuserrole.systemuserid = (GUID of the user in question)
    4. Then either iterate through the privileges or look for privilege where privilege.name = "prvReadMyEntityName"

    You have just have to perform the joins and add the where clause you care about. Here is the Equivalent SQL:

    SELECT Privilege.*
FROM Privilege
INNER JOIN RolePrivilege ON Privilege.PrivilegeId = RolePrivilege.PrivilegeId
INNER JOIN SystemUserRole ON SystemUserRole.RoleId = RolePrivileges.RoleId AND SystemUserRole.SystemUserId = (user's GUID)
-- WHERE Add whatever constraints on the Privilege entity that you need

    You can perform this using Fetch XML, or LINQ to CRM, or Query Expressions, or even OData.

    0 讨论(0)
 看不清?
提交回复
热议问题