Add error 403 page

Author: m-aliozkaya

aspnet-core/src/AbpCompanyName.AbpProjectName.Core/Localization/SourceFiles/AbpProjectName-tr.xml

@@ -117,5 +117,8 @@
     <text name="ResetPasswordStepOneInfo">1. Yönetici şifresini girin</text>
     <text name="ResetPasswordStepTwoInfo">2. Bu şifreyi kaydettikten sonra ilgili kullanıcıya gönderin</text>
     <text name="UsersActivation">Kullanıcıları aktifleştirme</text>
+    <text name="403PageHeader">Yetkisiz Erişim</text>
+    <text name="403PageDescription">Bu sayfaya erişmek için yetkiniz yok. Lütfen yöneticinizle iletişime geçin.</text>
+    <text name="403PageButton">Dashboard'a dön</text>
   </texts>
 </localizationDictionary>

aspnet-core/src/AbpCompanyName.AbpProjectName.Core/Localization/SourceFiles/AbpProjectName.xml

@@ -117,5 +117,8 @@
     <text name="ResetPasswordStepOneInfo">1. Enter your administrator password</text>
     <text name="ResetPasswordStepTwoInfo">2. Copy this random password so you can send it to the user</text>
     <text name="UsersActivation">Users activation</text>
+    <text name="403PageHeader">Forbidden</text>
+    <text name="403PageDescription">You don't have permission to access this resource. Please contact your administrator.</text>
+    <text name="403PageButton">Go back to Dashboard</text>
   </texts>
 </localizationDictionary>

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/Controllers/AccountController.cs

@@ -367,6 +367,16 @@ protected virtual async Task<List<Tenant>> FindPossibleTenantsOfUserAsync(UserLo
 
         #endregion
 
+        #region 403 Forbidden
+        
+        [Route("/Account/Forbidden")]
+        public ActionResult Error403()
+        {
+            return View();
+        }
+        
+        #endregion
+        
         #region Helpers
 
         public ActionResult RedirectToAppHome()

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/Startup/AuthConfigurer.cs

@@ -1,5 +1,7 @@
 using System;
 using System.Text;
+using Abp.AspNetCore.Mvc.Authorization;
+using Microsoft.AspNetCore.Mvc;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.IdentityModel.Tokens;
@@ -10,6 +12,11 @@ public static class AuthConfigurer
     {
         public static void Configure(IServiceCollection services, IConfiguration configuration)
         {
+            services.ConfigureApplicationCookie(options =>
+            {
+                options.AccessDeniedPath = "/Account/Forbidden";
+            });
+            
             if (bool.Parse(configuration["Authentication:JwtBearer:IsEnabled"]))
             {
                 services.AddAuthentication()

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/Views/Account/Error403.cshtml

@@ -0,0 +1,26 @@
+@{
+    ViewBag.Title = L("403PageHeader");
+    ViewBag.HideTenantChange = true;
+}
+
+@section styles
+{
+    <link href="~/view-resources/Views/Account/Error403.css" rel="stylesheet" asp-append-version="true" />
+}
+
+<div class="forbidden-box d-flex flex-column align-items-center justify-content-center text-center">
+    <div class="d-flex align-items-center">
+        <div class="display-1 text-warning me-3">
+            403
+        </div>
+    </div>
+    <h2 class="text-warning">
+        <i class="fas fa-exclamation-triangle"></i> @L("403PageHeader")
+    </h2>
+    <div class="mt-4">
+        <p class="lead text-muted">
+            @L("403PageDescription")
+        </p>
+        <a href="@Url.Action("Index", "Home")" class="btn btn-primary">@L("403PageButton")</a>
+    </div>
+</div>

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/Views/Account/_Layout.cshtml

@@ -12,6 +12,9 @@
 
     var pageTitle = !string.IsNullOrWhiteSpace(ViewBag.Title) ? ViewBag.Title + " / " : "";
     pageTitle += "AbpProjectName";
+    
+    var hideTenantChange = ViewBag.HideTenantChange != null && ViewBag.HideTenantChange == true;
+    var showTenantChange = MultiTenancyConfig.IsEnabled && !hideTenantChange;
 }
 <!DOCTYPE html>
 <html lang="@LanguageManager.CurrentLanguage.Name">
@@ -31,7 +34,7 @@
             <a href="/"><b>AbpProjectName</b></a>
         </div>
         <div class="card">
-            @if (MultiTenancyConfig.IsEnabled)
+            @if (showTenantChange)
             {
                 <div class="card-header">
                     <vc:tenant-change></vc:tenant-change>

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/wwwroot/view-resources/Views/Account/Error403.css

@@ -0,0 +1,7 @@
+.login-box {
+    width: inherit;
+}
+
+.forbidden-box {
+    max-width: 350px;
+}

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/wwwroot/view-resources/Views/Account/Error403.scss

@@ -0,0 +1,7 @@
+.login-box {
+  width: inherit;
+}
+
+.forbidden-box {
+  max-width: 350px;
+}