첨부 실행 코드는 나눔고딕코딩 폰트를 사용합니다.

[C#/ASP.NET MVC/.NET5] TypeFilterAttribute 클래스 : 복수 역할 권한 확인 어트리뷰트 사용하기

C#/ASP.NET MVC 2021. 10. 4. 22:10
728x90
반응형
728x170

▶ MultipleRoleAuthorizeAttribute.cs

using Microsoft.AspNetCore.Mvc;

namespace TestServer.Tools
{
    /// <summary>
    /// 복수 역할 권한 확인 어트리브튜
    /// </summary>
    public class MultipleRoleAuthorizeAttribute : TypeFilterAttribute
    {
        //////////////////////////////////////////////////////////////////////////////////////////////////// Constructor
        ////////////////////////////////////////////////////////////////////////////////////////// Public

        #region 생성자 - MultipleRoleAuthorizeAttribute(policyList, applyAnd)

        /// <summary>
        /// 생성자
        /// </summary>
        /// <param name="policyList">정책 리스트</param>
        /// <param name="applyAnd">AND 적용 여부</param>
        public MultipleRoleAuthorizeAttribute(string policyList, bool applyAnd = false) : base(typeof(MultipleRoleAuthorizeFilter))
        {
            Arguments = new object[] { policyList, applyAnd };
        }

        #endregion
    }
}

 

728x90

 

▶ MultipleRoleAuthorizeFilter.cs

using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Mvc.Filters;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;

namespace TestServer.Tools
{
    /// <summary>
    /// 복수 역할 권한 확인 필터
    /// </summary>
    public class MultipleRoleAuthorizeFilter : IAsyncAuthorizationFilter
    {
        //////////////////////////////////////////////////////////////////////////////////////////////////// Field
        ////////////////////////////////////////////////////////////////////////////////////////// Private

        #region Field

        /// <summary>
        /// 권한 서비스
        /// </summary>
        private readonly IAuthorizationService authorizationService;

        #endregion

        //////////////////////////////////////////////////////////////////////////////////////////////////// Property
        ////////////////////////////////////////////////////////////////////////////////////////// Public

        #region 정책 리스트 - PolicyList

        /// <summary>
        /// 정책 리스트
        /// </summary>
        public string PolicyList { get; private set; }

        #endregion
        #region AND 적용 여부 - ApplyAnd

        /// <summary>
        /// AND 적용 여부
        /// </summary>
        public bool ApplyAnd { get; private set; }

        #endregion

        //////////////////////////////////////////////////////////////////////////////////////////////////// Constructor
        ////////////////////////////////////////////////////////////////////////////////////////// Public

        #region 생성자 - MultipleRoleAuthorizeFilter(policyList, applyAnd, authorizationService)

        /// <summary>
        /// 생성자
        /// </summary>
        /// <param name="policyList">정책 리스트</param>
        /// <param name="applyAnd">AND 적용 여부</param>
        /// <param name="authorizationService">권한 서비스</param>
        public MultipleRoleAuthorizeFilter(string policyList, bool applyAnd, IAuthorizationService authorizationService)
        {
           this.authorizationService = authorizationService;

           PolicyList = policyList;
           ApplyAnd   = applyAnd;
        }

        #endregion

        //////////////////////////////////////////////////////////////////////////////////////////////////// Method
        ////////////////////////////////////////////////////////////////////////////////////////// Public

        #region 권한 확인시 처리하기 (비동기) - OnAuthorizationAsync(context)

        /// <summary>
        /// 권한 확인시 처리하기 (비동기)
        /// </summary>
        /// <param name="context">컨텍스트</param>
        /// <returns>태스크</returns>
        public async Task OnAuthorizationAsync(AuthorizationFilterContext context)
        {
            List<string> list = PolicyList.Split(";").ToList();

            if(ApplyAnd)
            {
                foreach(string policy in list)
                {
                    AuthorizationResult result = await authorizationService.AuthorizeAsync(context.HttpContext.User, policy);

                    if(!result.Succeeded)
                    {
                        context.Result = new UnauthorizedResult(); // new ForbidResult();

                        return;
                    }

                }
             }
             else
             {
                foreach(string policy in list)
                {
                     AuthorizationResult result = await authorizationService.AuthorizeAsync(context.HttpContext.User, policy);

                     if(result.Succeeded)
                     {
                         return;
                     }

                }

                context.Result = new UnauthorizedResult(); // new ForbidResult();

                return;
            }
        }

        #endregion
    }
}
728x90
반응형
그리드형(광고전용)

'C# > ASP.NET MVC' 카테고리의 다른 글

[C#/ASP.NET MVC/.NET6] KeyDerivation 클래스 : Pbkdf2 정적 메소드를 사용해 패스워드 해시값 구하기  (0) 2022.09.07
[C#/ASP.NET MVC/.NET6] 누겟 설치 : Microsoft.AspNetCore.Cryptography.KeyDerivation  (0) 2022.09.07
[C#/ASP.NET MVC/.NET5] MvcCoreMvcBuilderExtensions 클래스 : AddApplicationPart 확장 메소드를 사용해 클래스 라이브러리에서 컨트롤러 사용하기  (0) 2021.10.30
[C#/ASP.NET MVC/.NET5] 누겟 설치 : Microsoft.AspNetCore.Mvc  (0) 2021.10.30
[C#/ASP.NET MVC/.NET5] 누겟 설치 : Npgsql.EntityFrameworkCore.PostgreSQL.Design  (0) 2021.07.25
[C#/ASP.NET MVC/.NET5] 누겟 설치 : Npgsql.EntityFrameworkCore.PostgreSQL  (0) 2021.07.25
[C#/ASP.NET MVC/.NET5] 누겟 설치 : Swashbuckle.AspNetCore  (0) 2021.07.25
[C#/ASP.NET MVC/.NETCORE] ActionFilterAttribute 클래스 : 액션 필터 사용하기  (0) 2020.11.17
[C#/ASP.NET MVC/.NETCORE] ResponseCompressionBuilderExtensions 클래스 : UseResponseCompression 확장 메소드를 사용해 응답 압축 사용하기  (0) 2020.11.17
[C#/ASP.NET MVC/.NETCORE] 누겟 설치 : Microsoft.AspNetCore.ResponseCompression  (0) 2020.11.17
Posted by icodebroker
TAG , , , ,
, 댓글 0개가 달렸습니다.

댓글을 달아 주세요

티스토리툴바