#2317 add function to check bunch of datasets

sventhiel · sventhiel · commit 3c3349442f51 · 2025-12-19T23:50:49.000+01:00
diff --git a/Components/AAA/BExIS.Security.Services/Authorization/EntityPermissionManager.cs b/Components/AAA/BExIS.Security.Services/Authorization/EntityPermissionManager.cs
@@ -287,6 +287,69 @@ await GetRightsAsync(entityId, key),
             }
         }
 
+        public async Task<Dictionary<long, int>> GetEffectiveRightsAsync(long subjectId, long entityId, List<long> keys)
+        {
+            using (var uow = this.GetUnitOfWork())
+            {
+                var entityPermissionRepository = uow.GetRepository<EntityPermission>();
+                var subjectRepository = uow.GetRepository<Subject>();
+                var partyUserRepository = uow.GetRepository<PartyUser>();
+                var entityRepository = uow.GetRepository<Entity>();
+                var partyRepository = uow.GetRepository<Party>();
+                var partyRelationshipRepository = uow.GetRepository<PartyRelationship>();
+
+                var dictionary = new Dictionary<long, int>();
+
+                foreach (var key in keys)
+                {
+                    var rights = new List<int>
+                {
+                    // public
+                    await GetRightsAsync(entityId, key),
+
+                    // private
+                    await GetRightsAsync(subjectId, entityId, key)
+                };
+
+                    var subject = subjectRepository.Get(subjectId);
+
+                    if (subject is User)
+                    {
+                        var partyUser = partyUserRepository.Query(m => m.UserId == subject.Id).FirstOrDefault();
+
+                        if (partyUser != null)
+                        {
+                            var userParty = partyRepository.Get(partyUser.PartyId);
+
+                            var entityName = entityRepository.Get(entityId).Name;
+
+                            var entityParty = partyRepository
+                                .Query(m => entityName.ToLowerInvariant() == m.PartyType.Title.ToLowerInvariant() && m.Name.ToLowerInvariant() == key.ToString().ToLowerInvariant())
+                                .FirstOrDefault();
+
+                            if (userParty != null && entityParty != null)
+                            {
+                                var partyRelationships = partyRelationshipRepository.Query(m => m.SourceParty.Id == userParty.Id && m.TargetParty.Id == entityParty.Id);
+
+                                rights.AddRange(partyRelationships.Select(m => m.Permission));
+                            }
+                        }
+
+                        var user = subject as User;
+
+                        foreach (var groupId in user.Groups.Select(g => g.Id).ToList())
+                        {
+                            rights.Add(await GetRightsAsync(groupId, entityId, key));
+                        }
+                    }
+
+                    dictionary.Add(entityId, rights.Aggregate(0, (left, right) => left | right));
+                }
+
+                return dictionary;
+            }
+        }
+
         public async Task<int> GetEffectiveRightsAsync(long subjectId, long entityId, long key)
         {
             using (var uow = this.GetUnitOfWork())
