Attribute是一个类,用来对程序中的元素进行标注,如类型、字段、方法和属性等。Attributes和Microsoft .NET Framework文件的元数据保存在一起,可以用来向运行时描述你的代码,或者在程序运行的时候影响应用程序的行为。根据不同的标签做出不同的处理。
[AttributeUsage(AttributeTargets.Class | AttributeTargets.Method, AllowMultiple = false)]
public class UserAuthorizeAttribute : AuthorizeAttribute
{
#region 字段和属性
/// <summary>
/// 模块别名,可配置更改
/// </summary>
public string ModuleAlias { get; set; }
/// <summary>
/// 权限动作
/// </summary>
public string OperaAction { get; set; }
/// <summary>
/// 权限访问控制器参数
/// </summary>
private string Sign { get; set; }
/// <summary>
/// 基类实例化
/// </summary>
public BaseController baseController = new BaseController();
#endregion
#region 权限认证
/// <summary>
/// 权限认证
/// </summary>
public override void OnAuthorization(AuthorizationContext filterContext)
{
try
{
HttpContext.Current.Request.UrlReferrer.ToString();
}
catch
{
filterContext.Result = new EmptyResult();
return;
}
//1、判断模块是否对应
if (string.IsNullOrEmpty(ModuleAlias))
{
filterContext.HttpContext.Response.Write(" <script type='text/javascript'> alert('^您没有访问该页面的权限!'); </script>");
filterContext.RequestContext.HttpContext.Response.End();
filterContext.Result = new EmptyResult();
return;
}
//2、判断用户是否存在
if (baseController.CurrentUser == null)
{
filterContext.HttpContext.Response.Write(" <script type='text/javascript'> alert('^登录已过期,请重新登录!');window.top.location='/'; </script>");
filterContext.RequestContext.HttpContext.Response.End();
filterContext.Result = new EmptyResult();
return;
}
//对比变量,用于权限认证
var alias = ModuleAlias;
#region 配置Sign调取控制器标识
Sign = filterContext.RequestContext.HttpContext.Request.QueryString["sign"];
if (!string.IsNullOrEmpty(Sign))
{
if (("," + ModuleAlias.ToLower()).Contains("," + Sign.ToLower()))
{
alias = Sign;
filterContext.Controller.ViewData["Sign"] = Sign;
}
}
#endregion
//3、调用下面的方法,验证是否有访问此页面的权限,查看加操作
var moduleId = baseController.CurrentUser.Modules.Where(p => p.ALIAS.ToLower() == alias.ToLower()).Select(p => p.ID).FirstOrDefault();
bool _blAllowed = this.IsAllowed(baseController.CurrentUser, moduleId, OperaAction);
if (!_blAllowed)
{
filterContext.HttpContext.Response.Write(" <script type='text/javascript'> alert('您没有访问当前页面的权限!');</script>");
filterContext.RequestContext.HttpContext.Response.End();
filterContext.Result = new EmptyResult();
return;
}
//4、有权限访问页面,将此页面的权限集合传给页面
filterContext.Controller.ViewData["PermissionList"] = GetPermissByJson(baseController.CurrentUser, moduleId);
}
/// <summary>
/// 获取操作权限Json字符串,供视图JS判断使用
/// </summary>
string GetPermissByJson(Account account, int moduleId)
{
//操作权限
var _varPerListThisModule = account.Permissions.Where(p => p.MODULEID == moduleId).Select(R => new { R.PERVALUE }).ToList();
return Common.JsonConverter.Serialize(_varPerListThisModule);
}
/// <summary>
/// 功能描述:判断用户是否有此模块的操作权限
/// </summary>
bool IsAllowed(Account user, int moduleId, string action)
{
//判断入口
if (user == null || user.Id <= 0 || moduleId == 0 || string.IsNullOrEmpty(action)) return false;
//验证权限
var permission = user.Permissions.Where(p => p.MODULEID == moduleId);
action = action.Trim(',');
if (action.IndexOf(',') > 0)
{
permission = permission.Where(p => action.ToLower().Contains(p.PERVALUE.ToLower()));
}
else
{
permission = permission.Where(p => p.PERVALUE.ToLower() == action.ToLower());
}
return permission.Any();
}
#endregion
}
/// <summary>
/// 加载主页
/// </summary>
/// <returns></returns>
[UserAuthorizeAttribute(ModuleAlias = "Role", OperaAction = "View")]
public ActionResult Index()
{}
来源:https://www.cnblogs.com/llsg/p/11365130.html