dotnetcore
diff --git a/‎src/AgileConfig.Server.Apisite/Controllers/AppController.cs‎
Lines changed: 28 additions & 21 deletions b/‎src/AgileConfig.Server.Apisite/Controllers/AppController.cs‎
Lines changed: 28 additions & 21 deletions
diff --git a/‎src/AgileConfig.Server.Apisite/Controllers/ConfigController.cs‎
Lines changed: 32 additions & 8 deletions b/‎src/AgileConfig.Server.Apisite/Controllers/ConfigController.cs‎
Lines changed: 32 additions & 8 deletions
diff --git a/‎src/AgileConfig.Server.Apisite/Controllers/RoleController.cs‎
Lines changed: 3 additions & 3 deletions b/‎src/AgileConfig.Server.Apisite/Controllers/RoleController.cs‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎src/AgileConfig.Server.Apisite/Controllers/ServerNodeController.cs‎
Lines changed: 2 additions & 2 deletions b/‎src/AgileConfig.Server.Apisite/Controllers/ServerNodeController.cs‎
Lines changed: 2 additions & 2 deletions
@@ -6,6 +6,7 @@
 using AgileConfig.Server.Apisite.Models;
 using AgileConfig.Server.Apisite.Models.Mapping;
 using AgileConfig.Server.Apisite.Utilites;
+using AgileConfig.Server.Common;
 using AgileConfig.Server.Common.EventBus;
 using AgileConfig.Server.Common.Resources;
 using AgileConfig.Server.Data.Entity;
@@ -21,42 +22,51 @@ namespace AgileConfig.Server.Apisite.Controllers;
 public class AppController : Controller
 {
     private readonly IAppService _appService;
-    private readonly IPermissionService _permissionService;
     private readonly ITinyEventBus _tinyEventBus;
     private readonly IUserService _userService;
 
     public AppController(IAppService appService,
-        IPermissionService permissionService,
         IUserService userService,
         ITinyEventBus tinyEventBus)
     {
         _userService = userService;
         _tinyEventBus = tinyEventBus;
         _appService = appService;
-        _permissionService = permissionService;
     }
 
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.App_Read })]
     public async Task<IActionResult> Search(string name, string id, string group, string sortField,
         string ascOrDesc, bool tableGrouped, int current = 1, int pageSize = 20)
     {
         if (current < 1) throw new ArgumentException(Messages.CurrentCannotBeLessThanOne);
 
         if (pageSize < 1) throw new ArgumentException(Messages.PageSizeCannotBeLessThanOne);
 
+        var currentUserId = await this.GetCurrentUserId(_userService);
+        var isAdmin = false;
+        if (!string.IsNullOrWhiteSpace(currentUserId))
+        {
+            var roles = await _userService.GetUserRolesAsync(currentUserId);
+            isAdmin = roles.Any(r => r.Id == SystemRoleConstants.AdminId || r.Id == SystemRoleConstants.SuperAdminId);
+        }
+
         var appListVms = new List<AppListVM>();
         long count = 0;
         if (!tableGrouped)
         {
             var searchResult =
-                await _appService.SearchAsync(id, name, group, sortField, ascOrDesc, current, pageSize);
+                await _appService.SearchAsync(id, name, group, sortField, ascOrDesc, current, pageSize, currentUserId,
+                    isAdmin);
             foreach (var app in searchResult.Apps) appListVms.Add(app.ToAppListVM());
 
             count = searchResult.Count;
         }
         else
         {
             var searchResult =
-                await _appService.SearchGroupedAsync(id, name, group, sortField, ascOrDesc, current, pageSize);
+                await _appService.SearchGroupedAsync(id, name, group, sortField, ascOrDesc, current, pageSize,
+                    currentUserId, isAdmin);
             foreach (var groupedApp in searchResult.GroupedApps)
             {
                 var app = groupedApp.App;
@@ -97,7 +107,7 @@ private async Task AppendInheritancedInfo(List<AppListVM> list)
         }
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Add", Functions.App_Add })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Add })]
     [HttpPost]
     public async Task<IActionResult> Add([FromBody] AppVM model)
     {
@@ -141,7 +151,7 @@ public async Task<IActionResult> Add([FromBody] AppVM model)
         });
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Edit", Functions.App_Edit })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Edit })]
     [HttpPost]
     public async Task<IActionResult> Edit([FromBody] AppVM model)
     {
@@ -188,6 +198,7 @@ public async Task<IActionResult> Edit([FromBody] AppVM model)
         });
     }
 
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]
     [HttpGet]
     public async Task<IActionResult> Get(string id)
     {
@@ -213,7 +224,7 @@ public async Task<IActionResult> Get(string id)
     }
 
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "App.DisableOrEnable", Functions.App_Edit })]
+        Arguments = new object[] { Functions.App_Edit })]
     [HttpPost]
     public async Task<IActionResult> DisableOrEnable(string id)
     {
@@ -237,7 +248,7 @@ public async Task<IActionResult> DisableOrEnable(string id)
         });
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Delete", Functions.App_Delete })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Delete })]
     [HttpPost]
     public async Task<IActionResult> Delete(string id)
     {
@@ -267,6 +278,7 @@ public async Task<IActionResult> Delete(string id)
     /// </summary>
     /// <returns></returns>
     [HttpGet]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]
     public async Task<IActionResult> InheritancedApps(string currentAppId)
     {
         var apps = await _appService.GetAllInheritancedAppsAsync();
@@ -296,24 +308,22 @@ public async Task<IActionResult> InheritancedApps(string currentAppId)
     /// </summary>
     /// <param name="model">View model containing authorization assignments.</param>
     /// <returns>Operation result.</returns>
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Auth", Functions.App_Auth })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Auth })]
     [HttpPost]
     public async Task<IActionResult> SaveAppAuth([FromBody] AppAuthVM model)
     {
         ArgumentNullException.ThrowIfNull(model);
 
-        var result = await _appService.SaveUserAppAuth(model.AppId, model.EditConfigPermissionUsers,
-            _permissionService.EditConfigPermissionKey);
-        var result1 = await _appService.SaveUserAppAuth(model.AppId, model.PublishConfigPermissionUsers,
-            _permissionService.PublishConfigPermissionKey);
+        var result = await _appService.SaveUserAppAuth(model.AppId, model.AuthorizedUsers);
 
         return Json(new
         {
-            success = result && result1
+            success = result
         });
     }
 
     [HttpGet]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]
     public async Task<IActionResult> GetUserAppAuth(string appId)
     {
         ArgumentException.ThrowIfNullOrEmpty(appId);
@@ -322,12 +332,8 @@ public async Task<IActionResult> GetUserAppAuth(string appId)
         {
             AppId = appId
         };
-        result.EditConfigPermissionUsers =
-            (await _appService.GetUserAppAuth(appId, _permissionService.EditConfigPermissionKey)).Select(x => x.Id)
-            .ToList();
-        result.PublishConfigPermissionUsers =
-            (await _appService.GetUserAppAuth(appId, _permissionService.PublishConfigPermissionKey))
-            .Select(x => x.Id).ToList();
+        result.AuthorizedUsers =
+            (await _appService.GetUserAppAuth(appId)).Select(x => x.Id).ToList();
 
         return Json(new
         {
@@ -337,6 +343,7 @@ public async Task<IActionResult> GetUserAppAuth(string appId)
     }
 
     [HttpGet]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]
     public async Task<IActionResult> GetAppGroups()
     {
         var groups = await _appService.GetAppGroups();
 
@@ -39,7 +39,7 @@ ITinyEventBus tinyEventBus
         _tinyEventBus = tinyEventBus;
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Config.Add", Functions.Config_Add })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Config_Add })]
     [HttpPost]
     public async Task<IActionResult> Add([FromBody] ConfigVM model, EnvString env)
     {
@@ -88,7 +88,7 @@ public async Task<IActionResult> Add([FromBody] ConfigVM model, EnvString env)
     }
 
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "Config.AddRange", Functions.Config_Add })]
+        Arguments = new object[] { Functions.Config_Add })]
     [HttpPost]
     public async Task<IActionResult> AddRange([FromBody] List<ConfigVM> model, EnvString env)
     {
@@ -146,7 +146,7 @@ public async Task<IActionResult> AddRange([FromBody] List<ConfigVM> model, EnvSt
     }
 
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "Config.Edit", Functions.Config_Edit })]
+        Arguments = new object[] { Functions.Config_Edit })]
     [HttpPost]
     public async Task<IActionResult> Edit([FromBody] ConfigVM model, [FromQuery] EnvString env)
     {
@@ -254,6 +254,8 @@ public async Task<IActionResult> All(string env)
     /// <param name="current">Current page number.</param>
     /// <returns></returns>
     [HttpGet]
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     public async Task<IActionResult> Search(string appId, string group, string key, OnlineStatus? onlineStatus,
         string sortField, string ascOrDesc, EnvString env, int pageSize = 20, int current = 1)
     {
@@ -295,6 +297,8 @@ public async Task<IActionResult> Search(string appId, string group, string key,
     }
 
     [HttpGet]
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     public async Task<IActionResult> Get(string id, EnvString env)
     {
         if (string.IsNullOrEmpty(id)) throw new ArgumentNullException("id");
@@ -310,7 +314,7 @@ public async Task<IActionResult> Get(string id, EnvString env)
     }
 
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "Config.Delete", Functions.Config_Delete })]
+        Arguments = new object[] { Functions.Config_Delete })]
     [HttpPost]
     public async Task<IActionResult> Delete(string id, EnvString env)
     {
@@ -343,7 +347,7 @@ public async Task<IActionResult> Delete(string id, EnvString env)
     }
 
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "Config.DeleteSome", Functions.Config_Delete })]
+        Arguments = new object[] { Functions.Config_Delete })]
     [HttpPost]
     public async Task<IActionResult> DeleteSome([FromBody] List<string> ids, EnvString env)
     {
@@ -385,7 +389,7 @@ public async Task<IActionResult> DeleteSome([FromBody] List<string> ids, EnvStri
 
 
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "Config.Rollback", Functions.Config_Publish })]
+        Arguments = new object[] { Functions.Config_Offline })]
     [HttpPost]
     public async Task<IActionResult> Rollback(string publishTimelineId, EnvString env)
     {
@@ -406,6 +410,8 @@ public async Task<IActionResult> Rollback(string publishTimelineId, EnvString en
         });
     }
 
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     [HttpGet]
     public async Task<IActionResult> ConfigPublishedHistory(string configId, EnvString env)
     {
@@ -438,7 +444,7 @@ public async Task<IActionResult> ConfigPublishedHistory(string configId, EnvStri
     /// </summary>
     /// <returns></returns>
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "Config.Publish", Functions.Config_Publish })]
+        Arguments = new object[] { Functions.Config_Publish })]
     [HttpPost]
     public async Task<IActionResult> Publish([FromBody] PublishLogVM model, EnvString env)
     {
@@ -517,6 +523,8 @@ public IActionResult PreViewJsonFile()
     /// </summary>
     /// <param name="appId">Application ID.</param>
     /// <returns></returns>
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     public async Task<IActionResult> ExportJson(string appId, EnvString env)
     {
         if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");
@@ -540,6 +548,8 @@ public async Task<IActionResult> ExportJson(string appId, EnvString env)
     /// </summary>
     /// <param name="appId">Application ID.</param>
     /// <returns></returns>
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     public async Task<IActionResult> WaitPublishStatus(string appId, EnvString env)
     {
         if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");
@@ -569,6 +579,8 @@ public async Task<IActionResult> WaitPublishStatus(string appId, EnvString env)
     /// </summary>
     /// <param name="appId">Application ID.</param>
     /// <returns></returns>
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     public async Task<IActionResult> PublishHistory(string appId, EnvString env)
     {
         if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");
@@ -596,6 +608,8 @@ await _configService.GetPublishTimeLineNodeAsync(data.FirstOrDefault()?.PublishT
         });
     }
 
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Edit })]
     public async Task<IActionResult> CancelEdit(string configId, EnvString env)
     {
         if (string.IsNullOrEmpty(configId)) throw new ArgumentNullException("configId");
@@ -614,6 +628,8 @@ public async Task<IActionResult> CancelEdit(string configId, EnvString env)
         });
     }
 
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Edit })]
     public async Task<IActionResult> CancelSomeEdit([FromBody] List<string> ids, EnvString env)
     {
         if (ids == null) throw new ArgumentNullException("ids");
@@ -633,7 +649,7 @@ public async Task<IActionResult> CancelSomeEdit([FromBody] List<string> ids, Env
     }
 
     [TypeFilter(typeof(PermissionCheckAttribute),
-        Arguments = new object[] { "Config.EvnSync", Functions.Config_Add })]
+        Arguments = new object[] { Functions.Config_Add })]
     [HttpPost]
     public async Task<IActionResult> SyncEnv([FromBody] List<string> toEnvs, [FromQuery] string appId,
         [FromQuery] string currentEnv)
@@ -660,6 +676,8 @@ public async Task<IActionResult> SyncEnv([FromBody] List<string> toEnvs, [FromQu
         });
     }
 
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     public async Task<IActionResult> GetKvList(string appId, EnvString env)
     {
         if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");
@@ -684,6 +702,8 @@ public async Task<IActionResult> GetKvList(string appId, EnvString env)
     /// </summary>
     /// <param name="appId">Application ID.</param>
     /// <returns></returns>
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Read })]
     public async Task<IActionResult> GetJson(string appId, EnvString env)
     {
         if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");
@@ -708,6 +728,8 @@ public async Task<IActionResult> GetJson(string appId, EnvString env)
     }
 
     [HttpPost]
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Edit })]
     public async Task<IActionResult> SaveJson([FromBody] SaveJsonVM data, string appId, EnvString env)
     {
         if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException(nameof(appId));
@@ -725,6 +747,8 @@ public async Task<IActionResult> SaveJson([FromBody] SaveJsonVM data, string app
     }
 
     [HttpPost]
+    [TypeFilter(typeof(PermissionCheckAttribute),
+        Arguments = new object[] { Functions.Config_Edit })]
     public async Task<IActionResult> SaveKvList([FromBody] SaveKVListVM data, string appId, EnvString env)
     {
         if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException(nameof(appId));
 
@@ -56,7 +56,7 @@ public IActionResult SupportedPermissions()
         });
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Role.Add", Functions.Role_Add })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Role_Add })]
     [HttpPost]
     public async Task<IActionResult> Add([FromBody] RoleVM model)
     {
@@ -75,7 +75,7 @@ public async Task<IActionResult> Add([FromBody] RoleVM model)
         return Json(new { success = true });
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Role.Edit", Functions.Role_Edit })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Role_Edit })]
     [HttpPost]
     public async Task<IActionResult> Edit([FromBody] RoleVM model)
     {
@@ -106,7 +106,7 @@ public async Task<IActionResult> Edit([FromBody] RoleVM model)
         });
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Role.Delete", Functions.Role_Delete })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Role_Delete })]
     [HttpPost]
     public async Task<IActionResult> Delete(string id)
     {
 
@@ -35,7 +35,7 @@ ITinyEventBus tinyEventBus
         _tinyEventBus = tinyEventBus;
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Node.Add", Functions.Node_Add })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Node_Add })]
     [HttpPost]
     public async Task<IActionResult> Add([FromBody] ServerNodeVM model)
     {
@@ -70,7 +70,7 @@ public async Task<IActionResult> Add([FromBody] ServerNodeVM model)
         });
     }
 
-    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Node.Delete", Functions.Node_Delete })]
+    [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Node_Delete })]
     [HttpPost]
     public async Task<IActionResult> Delete([FromBody] ServerNodeVM model)
     {
Original file line number	Diff line number	Diff line change
`@@ -6,6 +6,7 @@`
`6`	`6`	`using AgileConfig.Server.Apisite.Models;`
`7`	`7`	`using AgileConfig.Server.Apisite.Models.Mapping;`
`8`	`8`	`using AgileConfig.Server.Apisite.Utilites;`
	`9`	`+using AgileConfig.Server.Common;`
`9`	`10`	`using AgileConfig.Server.Common.EventBus;`
`10`	`11`	`using AgileConfig.Server.Common.Resources;`
`11`	`12`	`using AgileConfig.Server.Data.Entity;`
`@@ -21,42 +22,51 @@ namespace AgileConfig.Server.Apisite.Controllers;`
`21`	`22`	`public class AppController : Controller`
`22`	`23`	`{`
`23`	`24`	`private readonly IAppService _appService;`
`24`		`- private readonly IPermissionService _permissionService;`
`25`	`25`	`private readonly ITinyEventBus _tinyEventBus;`
`26`	`26`	`private readonly IUserService _userService;`
`27`	`27`
`28`	`28`	`public AppController(IAppService appService,`
`29`		`- IPermissionService permissionService,`
`30`	`29`	`IUserService userService,`
`31`	`30`	`ITinyEventBus tinyEventBus)`
`32`	`31`	`{`
`33`	`32`	`_userService = userService;`
`34`	`33`	`_tinyEventBus = tinyEventBus;`
`35`	`34`	`_appService = appService;`
`36`		`- _permissionService = permissionService;`
`37`	`35`	`}`
`38`	`36`
	`37`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`38`	`+ Arguments = new object[] { Functions.App_Read })]`
`39`	`39`	`public async Task<IActionResult> Search(string name, string id, string group, string sortField,`
`40`	`40`	`string ascOrDesc, bool tableGrouped, int current = 1, int pageSize = 20)`
`41`	`41`	`{`
`42`	`42`	`if (current < 1) throw new ArgumentException(Messages.CurrentCannotBeLessThanOne);`
`43`	`43`
`44`	`44`	`if (pageSize < 1) throw new ArgumentException(Messages.PageSizeCannotBeLessThanOne);`
`45`	`45`
	`46`	`+ var currentUserId = await this.GetCurrentUserId(_userService);`
	`47`	`+ var isAdmin = false;`
	`48`	`+ if (!string.IsNullOrWhiteSpace(currentUserId))`
	`49`	`+ {`
	`50`	`+ var roles = await _userService.GetUserRolesAsync(currentUserId);`
	`51`	`+ isAdmin = roles.Any(r => r.Id == SystemRoleConstants.AdminId \|\| r.Id == SystemRoleConstants.SuperAdminId);`
	`52`	`+ }`
	`53`	`+`
`46`	`54`	`var appListVms = new List<AppListVM>();`
`47`	`55`	`long count = 0;`
`48`	`56`	`if (!tableGrouped)`
`49`	`57`	`{`
`50`	`58`	`var searchResult =`
`51`		`- await _appService.SearchAsync(id, name, group, sortField, ascOrDesc, current, pageSize);`
	`59`	`+ await _appService.SearchAsync(id, name, group, sortField, ascOrDesc, current, pageSize, currentUserId,`
	`60`	`+ isAdmin);`
`52`	`61`	`foreach (var app in searchResult.Apps) appListVms.Add(app.ToAppListVM());`
`53`	`62`
`54`	`63`	`count = searchResult.Count;`
`55`	`64`	`}`
`56`	`65`	`else`
`57`	`66`	`{`
`58`	`67`	`var searchResult =`
`59`		`- await _appService.SearchGroupedAsync(id, name, group, sortField, ascOrDesc, current, pageSize);`
	`68`	`+ await _appService.SearchGroupedAsync(id, name, group, sortField, ascOrDesc, current, pageSize,`
	`69`	`+ currentUserId, isAdmin);`
`60`	`70`	`foreach (var groupedApp in searchResult.GroupedApps)`
`61`	`71`	`{`
`62`	`72`	`var app = groupedApp.App;`
`@@ -97,7 +107,7 @@ private async Task AppendInheritancedInfo(List<AppListVM> list)`
`97`	`107`	`}`
`98`	`108`	`}`
`99`	`109`
`100`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Add", Functions.App_Add })]`
	`110`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Add })]`
`101`	`111`	`[HttpPost]`
`102`	`112`	`public async Task<IActionResult> Add([FromBody] AppVM model)`
`103`	`113`	`{`
`@@ -141,7 +151,7 @@ public async Task<IActionResult> Add([FromBody] AppVM model)`
`141`	`151`	`});`
`142`	`152`	`}`
`143`	`153`
`144`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Edit", Functions.App_Edit })]`
	`154`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Edit })]`
`145`	`155`	`[HttpPost]`
`146`	`156`	`public async Task<IActionResult> Edit([FromBody] AppVM model)`
`147`	`157`	`{`
`@@ -188,6 +198,7 @@ public async Task<IActionResult> Edit([FromBody] AppVM model)`
`188`	`198`	`});`
`189`	`199`	`}`
`190`	`200`
	`201`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]`
`191`	`202`	`[HttpGet]`
`192`	`203`	`public async Task<IActionResult> Get(string id)`
`193`	`204`	`{`
`@@ -213,7 +224,7 @@ public async Task<IActionResult> Get(string id)`
`213`	`224`	`}`
`214`	`225`
`215`	`226`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`216`		`- Arguments = new object[] { "App.DisableOrEnable", Functions.App_Edit })]`
	`227`	`+ Arguments = new object[] { Functions.App_Edit })]`
`217`	`228`	`[HttpPost]`
`218`	`229`	`public async Task<IActionResult> DisableOrEnable(string id)`
`219`	`230`	`{`
`@@ -237,7 +248,7 @@ public async Task<IActionResult> DisableOrEnable(string id)`
`237`	`248`	`});`
`238`	`249`	`}`
`239`	`250`
`240`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Delete", Functions.App_Delete })]`
	`251`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Delete })]`
`241`	`252`	`[HttpPost]`
`242`	`253`	`public async Task<IActionResult> Delete(string id)`
`243`	`254`	`{`
`@@ -267,6 +278,7 @@ public async Task<IActionResult> Delete(string id)`
`267`	`278`	`/// </summary>`
`268`	`279`	`/// <returns></returns>`
`269`	`280`	`[HttpGet]`
	`281`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]`
`270`	`282`	`public async Task<IActionResult> InheritancedApps(string currentAppId)`
`271`	`283`	`{`
`272`	`284`	`var apps = await _appService.GetAllInheritancedAppsAsync();`
`@@ -296,24 +308,22 @@ public async Task<IActionResult> InheritancedApps(string currentAppId)`
`296`	`308`	`/// </summary>`
`297`	`309`	`/// <param name="model">View model containing authorization assignments.</param>`
`298`	`310`	`/// <returns>Operation result.</returns>`
`299`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "App.Auth", Functions.App_Auth })]`
	`311`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Auth })]`
`300`	`312`	`[HttpPost]`
`301`	`313`	`public async Task<IActionResult> SaveAppAuth([FromBody] AppAuthVM model)`
`302`	`314`	`{`
`303`	`315`	`ArgumentNullException.ThrowIfNull(model);`
`304`	`316`
`305`		`- var result = await _appService.SaveUserAppAuth(model.AppId, model.EditConfigPermissionUsers,`
`306`		`- _permissionService.EditConfigPermissionKey);`
`307`		`- var result1 = await _appService.SaveUserAppAuth(model.AppId, model.PublishConfigPermissionUsers,`
`308`		`- _permissionService.PublishConfigPermissionKey);`
	`317`	`+ var result = await _appService.SaveUserAppAuth(model.AppId, model.AuthorizedUsers);`
`309`	`318`
`310`	`319`	`return Json(new`
`311`	`320`	`{`
`312`		`- success = result && result1`
	`321`	`+ success = result`
`313`	`322`	`});`
`314`	`323`	`}`
`315`	`324`
`316`	`325`	`[HttpGet]`
	`326`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]`
`317`	`327`	`public async Task<IActionResult> GetUserAppAuth(string appId)`
`318`	`328`	`{`
`319`	`329`	`ArgumentException.ThrowIfNullOrEmpty(appId);`
`@@ -322,12 +332,8 @@ public async Task<IActionResult> GetUserAppAuth(string appId)`
`322`	`332`	`{`
`323`	`333`	`AppId = appId`
`324`	`334`	`};`
`325`		`- result.EditConfigPermissionUsers =`
`326`		`- (await _appService.GetUserAppAuth(appId, _permissionService.EditConfigPermissionKey)).Select(x => x.Id)`
`327`		`- .ToList();`
`328`		`- result.PublishConfigPermissionUsers =`
`329`		`- (await _appService.GetUserAppAuth(appId, _permissionService.PublishConfigPermissionKey))`
`330`		`- .Select(x => x.Id).ToList();`
	`335`	`+ result.AuthorizedUsers =`
	`336`	`+ (await _appService.GetUserAppAuth(appId)).Select(x => x.Id).ToList();`
`331`	`337`
`332`	`338`	`return Json(new`
`333`	`339`	`{`
`@@ -337,6 +343,7 @@ public async Task<IActionResult> GetUserAppAuth(string appId)`
`337`	`343`	`}`
`338`	`344`
`339`	`345`	`[HttpGet]`
	`346`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.App_Read })]`
`340`	`347`	`public async Task<IActionResult> GetAppGroups()`
`341`	`348`	`{`
`342`	`349`	`var groups = await _appService.GetAppGroups();`
Original file line number	Diff line number	Diff line change
`@@ -39,7 +39,7 @@ ITinyEventBus tinyEventBus`
`39`	`39`	`_tinyEventBus = tinyEventBus;`
`40`	`40`	`}`
`41`	`41`
`42`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Config.Add", Functions.Config_Add })]`
	`42`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Config_Add })]`
`43`	`43`	`[HttpPost]`
`44`	`44`	`public async Task<IActionResult> Add([FromBody] ConfigVM model, EnvString env)`
`45`	`45`	`{`
`@@ -88,7 +88,7 @@ public async Task<IActionResult> Add([FromBody] ConfigVM model, EnvString env)`
`88`	`88`	`}`
`89`	`89`
`90`	`90`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`91`		`- Arguments = new object[] { "Config.AddRange", Functions.Config_Add })]`
	`91`	`+ Arguments = new object[] { Functions.Config_Add })]`
`92`	`92`	`[HttpPost]`
`93`	`93`	`public async Task<IActionResult> AddRange([FromBody] List<ConfigVM> model, EnvString env)`
`94`	`94`	`{`
`@@ -146,7 +146,7 @@ public async Task<IActionResult> AddRange([FromBody] List<ConfigVM> model, EnvSt`
`146`	`146`	`}`
`147`	`147`
`148`	`148`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`149`		`- Arguments = new object[] { "Config.Edit", Functions.Config_Edit })]`
	`149`	`+ Arguments = new object[] { Functions.Config_Edit })]`
`150`	`150`	`[HttpPost]`
`151`	`151`	`public async Task<IActionResult> Edit([FromBody] ConfigVM model, [FromQuery] EnvString env)`
`152`	`152`	`{`
`@@ -254,6 +254,8 @@ public async Task<IActionResult> All(string env)`
`254`	`254`	`/// <param name="current">Current page number.</param>`
`255`	`255`	`/// <returns></returns>`
`256`	`256`	`[HttpGet]`
	`257`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`258`	`+ Arguments = new object[] { Functions.Config_Read })]`
`257`	`259`	`public async Task<IActionResult> Search(string appId, string group, string key, OnlineStatus? onlineStatus,`
`258`	`260`	`string sortField, string ascOrDesc, EnvString env, int pageSize = 20, int current = 1)`
`259`	`261`	`{`
`@@ -295,6 +297,8 @@ public async Task<IActionResult> Search(string appId, string group, string key,`
`295`	`297`	`}`
`296`	`298`
`297`	`299`	`[HttpGet]`
	`300`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`301`	`+ Arguments = new object[] { Functions.Config_Read })]`
`298`	`302`	`public async Task<IActionResult> Get(string id, EnvString env)`
`299`	`303`	`{`
`300`	`304`	`if (string.IsNullOrEmpty(id)) throw new ArgumentNullException("id");`
`@@ -310,7 +314,7 @@ public async Task<IActionResult> Get(string id, EnvString env)`
`310`	`314`	`}`
`311`	`315`
`312`	`316`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`313`		`- Arguments = new object[] { "Config.Delete", Functions.Config_Delete })]`
	`317`	`+ Arguments = new object[] { Functions.Config_Delete })]`
`314`	`318`	`[HttpPost]`
`315`	`319`	`public async Task<IActionResult> Delete(string id, EnvString env)`
`316`	`320`	`{`
`@@ -343,7 +347,7 @@ public async Task<IActionResult> Delete(string id, EnvString env)`
`343`	`347`	`}`
`344`	`348`
`345`	`349`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`346`		`- Arguments = new object[] { "Config.DeleteSome", Functions.Config_Delete })]`
	`350`	`+ Arguments = new object[] { Functions.Config_Delete })]`
`347`	`351`	`[HttpPost]`
`348`	`352`	`public async Task<IActionResult> DeleteSome([FromBody] List<string> ids, EnvString env)`
`349`	`353`	`{`
`@@ -385,7 +389,7 @@ public async Task<IActionResult> DeleteSome([FromBody] List<string> ids, EnvStri`
`385`	`389`
`386`	`390`
`387`	`391`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`388`		`- Arguments = new object[] { "Config.Rollback", Functions.Config_Publish })]`
	`392`	`+ Arguments = new object[] { Functions.Config_Offline })]`
`389`	`393`	`[HttpPost]`
`390`	`394`	`public async Task<IActionResult> Rollback(string publishTimelineId, EnvString env)`
`391`	`395`	`{`
`@@ -406,6 +410,8 @@ public async Task<IActionResult> Rollback(string publishTimelineId, EnvString en`
`406`	`410`	`});`
`407`	`411`	`}`
`408`	`412`
	`413`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`414`	`+ Arguments = new object[] { Functions.Config_Read })]`
`409`	`415`	`[HttpGet]`
`410`	`416`	`public async Task<IActionResult> ConfigPublishedHistory(string configId, EnvString env)`
`411`	`417`	`{`
`@@ -438,7 +444,7 @@ public async Task<IActionResult> ConfigPublishedHistory(string configId, EnvStri`
`438`	`444`	`/// </summary>`
`439`	`445`	`/// <returns></returns>`
`440`	`446`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`441`		`- Arguments = new object[] { "Config.Publish", Functions.Config_Publish })]`
	`447`	`+ Arguments = new object[] { Functions.Config_Publish })]`
`442`	`448`	`[HttpPost]`
`443`	`449`	`public async Task<IActionResult> Publish([FromBody] PublishLogVM model, EnvString env)`
`444`	`450`	`{`
`@@ -517,6 +523,8 @@ public IActionResult PreViewJsonFile()`
`517`	`523`	`/// </summary>`
`518`	`524`	`/// <param name="appId">Application ID.</param>`
`519`	`525`	`/// <returns></returns>`
	`526`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`527`	`+ Arguments = new object[] { Functions.Config_Read })]`
`520`	`528`	`public async Task<IActionResult> ExportJson(string appId, EnvString env)`
`521`	`529`	`{`
`522`	`530`	`if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");`
`@@ -540,6 +548,8 @@ public async Task<IActionResult> ExportJson(string appId, EnvString env)`
`540`	`548`	`/// </summary>`
`541`	`549`	`/// <param name="appId">Application ID.</param>`
`542`	`550`	`/// <returns></returns>`
	`551`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`552`	`+ Arguments = new object[] { Functions.Config_Read })]`
`543`	`553`	`public async Task<IActionResult> WaitPublishStatus(string appId, EnvString env)`
`544`	`554`	`{`
`545`	`555`	`if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");`
`@@ -569,6 +579,8 @@ public async Task<IActionResult> WaitPublishStatus(string appId, EnvString env)`
`569`	`579`	`/// </summary>`
`570`	`580`	`/// <param name="appId">Application ID.</param>`
`571`	`581`	`/// <returns></returns>`
	`582`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`583`	`+ Arguments = new object[] { Functions.Config_Read })]`
`572`	`584`	`public async Task<IActionResult> PublishHistory(string appId, EnvString env)`
`573`	`585`	`{`
`574`	`586`	`if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");`
`@@ -596,6 +608,8 @@ await _configService.GetPublishTimeLineNodeAsync(data.FirstOrDefault()?.PublishT`
`596`	`608`	`});`
`597`	`609`	`}`
`598`	`610`
	`611`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`612`	`+ Arguments = new object[] { Functions.Config_Edit })]`
`599`	`613`	`public async Task<IActionResult> CancelEdit(string configId, EnvString env)`
`600`	`614`	`{`
`601`	`615`	`if (string.IsNullOrEmpty(configId)) throw new ArgumentNullException("configId");`
`@@ -614,6 +628,8 @@ public async Task<IActionResult> CancelEdit(string configId, EnvString env)`
`614`	`628`	`});`
`615`	`629`	`}`
`616`	`630`
	`631`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`632`	`+ Arguments = new object[] { Functions.Config_Edit })]`
`617`	`633`	`public async Task<IActionResult> CancelSomeEdit([FromBody] List<string> ids, EnvString env)`
`618`	`634`	`{`
`619`	`635`	`if (ids == null) throw new ArgumentNullException("ids");`
`@@ -633,7 +649,7 @@ public async Task<IActionResult> CancelSomeEdit([FromBody] List<string> ids, Env`
`633`	`649`	`}`
`634`	`650`
`635`	`651`	`[TypeFilter(typeof(PermissionCheckAttribute),`
`636`		`- Arguments = new object[] { "Config.EvnSync", Functions.Config_Add })]`
	`652`	`+ Arguments = new object[] { Functions.Config_Add })]`
`637`	`653`	`[HttpPost]`
`638`	`654`	`public async Task<IActionResult> SyncEnv([FromBody] List<string> toEnvs, [FromQuery] string appId,`
`639`	`655`	`[FromQuery] string currentEnv)`
`@@ -660,6 +676,8 @@ public async Task<IActionResult> SyncEnv([FromBody] List<string> toEnvs, [FromQu`
`660`	`676`	`});`
`661`	`677`	`}`
`662`	`678`
	`679`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`680`	`+ Arguments = new object[] { Functions.Config_Read })]`
`663`	`681`	`public async Task<IActionResult> GetKvList(string appId, EnvString env)`
`664`	`682`	`{`
`665`	`683`	`if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");`
`@@ -684,6 +702,8 @@ public async Task<IActionResult> GetKvList(string appId, EnvString env)`
`684`	`702`	`/// </summary>`
`685`	`703`	`/// <param name="appId">Application ID.</param>`
`686`	`704`	`/// <returns></returns>`
	`705`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`706`	`+ Arguments = new object[] { Functions.Config_Read })]`
`687`	`707`	`public async Task<IActionResult> GetJson(string appId, EnvString env)`
`688`	`708`	`{`
`689`	`709`	`if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException("appId");`
`@@ -708,6 +728,8 @@ public async Task<IActionResult> GetJson(string appId, EnvString env)`
`708`	`728`	`}`
`709`	`729`
`710`	`730`	`[HttpPost]`
	`731`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`732`	`+ Arguments = new object[] { Functions.Config_Edit })]`
`711`	`733`	`public async Task<IActionResult> SaveJson([FromBody] SaveJsonVM data, string appId, EnvString env)`
`712`	`734`	`{`
`713`	`735`	`if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException(nameof(appId));`
`@@ -725,6 +747,8 @@ public async Task<IActionResult> SaveJson([FromBody] SaveJsonVM data, string app`
`725`	`747`	`}`
`726`	`748`
`727`	`749`	`[HttpPost]`
	`750`	`+ [TypeFilter(typeof(PermissionCheckAttribute),`
	`751`	`+ Arguments = new object[] { Functions.Config_Edit })]`
`728`	`752`	`public async Task<IActionResult> SaveKvList([FromBody] SaveKVListVM data, string appId, EnvString env)`
`729`	`753`	`{`
`730`	`754`	`if (string.IsNullOrEmpty(appId)) throw new ArgumentNullException(nameof(appId));`
Original file line number	Diff line number	Diff line change
`@@ -56,7 +56,7 @@ public IActionResult SupportedPermissions()`
`56`	`56`	`});`
`57`	`57`	`}`
`58`	`58`
`59`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Role.Add", Functions.Role_Add })]`
	`59`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Role_Add })]`
`60`	`60`	`[HttpPost]`
`61`	`61`	`public async Task<IActionResult> Add([FromBody] RoleVM model)`
`62`	`62`	`{`
`@@ -75,7 +75,7 @@ public async Task<IActionResult> Add([FromBody] RoleVM model)`
`75`	`75`	`return Json(new { success = true });`
`76`	`76`	`}`
`77`	`77`
`78`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Role.Edit", Functions.Role_Edit })]`
	`78`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Role_Edit })]`
`79`	`79`	`[HttpPost]`
`80`	`80`	`public async Task<IActionResult> Edit([FromBody] RoleVM model)`
`81`	`81`	`{`
`@@ -106,7 +106,7 @@ public async Task<IActionResult> Edit([FromBody] RoleVM model)`
`106`	`106`	`});`
`107`	`107`	`}`
`108`	`108`
`109`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Role.Delete", Functions.Role_Delete })]`
	`109`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Role_Delete })]`
`110`	`110`	`[HttpPost]`
`111`	`111`	`public async Task<IActionResult> Delete(string id)`
`112`	`112`	`{`
Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,7 @@ ITinyEventBus tinyEventBus`
`35`	`35`	`_tinyEventBus = tinyEventBus;`
`36`	`36`	`}`
`37`	`37`
`38`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Node.Add", Functions.Node_Add })]`
	`38`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Node_Add })]`
`39`	`39`	`[HttpPost]`
`40`	`40`	`public async Task<IActionResult> Add([FromBody] ServerNodeVM model)`
`41`	`41`	`{`
`@@ -70,7 +70,7 @@ public async Task<IActionResult> Add([FromBody] ServerNodeVM model)`
`70`	`70`	`});`
`71`	`71`	`}`
`72`	`72`
`73`		`- [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { "Node.Delete", Functions.Node_Delete })]`
	`73`	`+ [TypeFilter(typeof(PermissionCheckAttribute), Arguments = new object[] { Functions.Node_Delete })]`
`74`	`74`	`[HttpPost]`
`75`	`75`	`public async Task<IActionResult> Delete([FromBody] ServerNodeVM model)`
`76`	`76`	`{`