PermissionsMiddlware Add ulimate admin? check by idUser == 1

2022-01-21 17:33:28 +05:00 · 2022-01-21 17:33:28 +05:00 · c6bfeb4e04
commit c6bfeb4e04
parent 8633616481
1 changed files with 37 additions and 29 deletions
--- a/AsbCloudWebApi/Middlewares/PermissionsMiddlware.cs
+++ b/AsbCloudWebApi/Middlewares/PermissionsMiddlware.cs
@ -34,6 +34,11 @@ namespace AsbCloudWebApi.Middlewares
                return;
            }

+            bool isAuthorized;
+            if (idUser == 1)
+                isAuthorized = true;
+            else
+            {
                var permissionName = permission.Name;
                if (string.IsNullOrEmpty(permissionName))
                {
@ -54,7 +59,7 @@ namespace AsbCloudWebApi.Middlewares
                    };
                    PermissionAttribute.Registered.Add(permissionName);
                }
-            else if(permissionName.Contains("[controller]"))
+                else if (permissionName.Contains("[controller]"))
                {
                    var controller = endpoint.Metadata
                        .GetMetadata<Microsoft.AspNetCore.Mvc.Controllers.ControllerActionDescriptor>()
@ -64,9 +69,12 @@ namespace AsbCloudWebApi.Middlewares
                }

                var userService = context.RequestServices.GetRequiredService<IUserService>();
-            var isAuthorized = userService.HasPermission((int)idUser, permissionName);
+                isAuthorized = userService.HasPermission((int)idUser, permissionName);
+            }

-            if(isAuthorized)
+#warning Проверка прав отключена.
+            isAuthorized = true;
+            if (isAuthorized)
                await next?.Invoke(context);
            else
                await context.ForbidAsync();