mo-esmp
diff --git a/‎DynamicRoleBasedAuthorization.sln‎
Lines changed: 10 additions & 6 deletions b/‎DynamicRoleBasedAuthorization.sln‎
Lines changed: 10 additions & 6 deletions
diff --git a/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Controllers/RoleController.cs‎
Lines changed: 186 additions & 0 deletions b/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Controllers/RoleController.cs‎
Lines changed: 186 additions & 0 deletions
diff --git a/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Controllers/UserRoleController.cs‎
Lines changed: 109 additions & 0 deletions b/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Controllers/UserRoleController.cs‎
Lines changed: 109 additions & 0 deletions
diff --git a/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Models/RoleViewModel.cs‎
Lines changed: 15 additions & 0 deletions b/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Models/RoleViewModel.cs‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Models/UserRoleViewModel.cs‎
Lines changed: 15 additions & 0 deletions b/‎samples/netcore2.2/SampleMvc2WebApp/Areas/Access/Models/UserRoleViewModel.cs‎
Lines changed: 15 additions & 0 deletions
@@ -5,8 +5,6 @@ VisualStudioVersion = 16.0.29613.14
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "DynamicAuthorization.Mvc.Core", "src\DynamicAuthorization.Mvc.Core\DynamicAuthorization.Mvc.Core.csproj", "{89E57FDC-5AF7-4AAF-A40B-FBA91D41ECF4}"
 EndProject
-Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "DynamicRoleBasedAuthorization", "src\DynamicRoleBasedAuthorization\DynamicRoleBasedAuthorization.csproj", "{1C9180AD-3F20-4F16-9C2F-5DFB502A7FD5}"
-EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "DynamicAuthorization.Mvc.JsonStore", "src\DynamicAuthorization.Mvc.JsonStore\DynamicAuthorization.Mvc.JsonStore.csproj", "{3E397C28-EDC7-4DCC-896F-476A9EE74E76}"
 EndProject
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "src", "src", "{A7EEBB7E-C64D-4475-93D0-872E080A4E03}"
@@ -17,6 +15,10 @@ Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "netcore3.x", "netcore3.x",
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "SampleMvcWebApp", "samples\netcore3.x\SampleMvcWebApp\SampleMvcWebApp.csproj", "{0833E296-398F-42A4-9531-D125483AB019}"
 EndProject
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "netcore2.2", "netcore2.2", "{11B88EB7-66BE-402A-A4E0-144220EBD8B9}"
+EndProject
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "SampleMvc2WebApp", "samples\netcore2.2\SampleMvc2WebApp\SampleMvc2WebApp.csproj", "{A3124728-6766-48A3-BA1A-5CB119924395}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -27,10 +29,6 @@ Global
 		{89E57FDC-5AF7-4AAF-A40B-FBA91D41ECF4}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{89E57FDC-5AF7-4AAF-A40B-FBA91D41ECF4}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{89E57FDC-5AF7-4AAF-A40B-FBA91D41ECF4}.Release|Any CPU.Build.0 = Release|Any CPU
-		{1C9180AD-3F20-4F16-9C2F-5DFB502A7FD5}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
-		{1C9180AD-3F20-4F16-9C2F-5DFB502A7FD5}.Debug|Any CPU.Build.0 = Debug|Any CPU
-		{1C9180AD-3F20-4F16-9C2F-5DFB502A7FD5}.Release|Any CPU.ActiveCfg = Release|Any CPU
-		{1C9180AD-3F20-4F16-9C2F-5DFB502A7FD5}.Release|Any CPU.Build.0 = Release|Any CPU
 		{3E397C28-EDC7-4DCC-896F-476A9EE74E76}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
 		{3E397C28-EDC7-4DCC-896F-476A9EE74E76}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{3E397C28-EDC7-4DCC-896F-476A9EE74E76}.Release|Any CPU.ActiveCfg = Release|Any CPU
@@ -39,6 +37,10 @@ Global
 		{0833E296-398F-42A4-9531-D125483AB019}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{0833E296-398F-42A4-9531-D125483AB019}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{0833E296-398F-42A4-9531-D125483AB019}.Release|Any CPU.Build.0 = Release|Any CPU
+		{A3124728-6766-48A3-BA1A-5CB119924395}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{A3124728-6766-48A3-BA1A-5CB119924395}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{A3124728-6766-48A3-BA1A-5CB119924395}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{A3124728-6766-48A3-BA1A-5CB119924395}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -48,6 +50,8 @@ Global
 		{3E397C28-EDC7-4DCC-896F-476A9EE74E76} = {A7EEBB7E-C64D-4475-93D0-872E080A4E03}
 		{5FEB9007-1EFA-4814-BC15-DB0370B84E22} = {BAAF9837-1DB5-4032-AB2A-2901E6EE6EF8}
 		{0833E296-398F-42A4-9531-D125483AB019} = {5FEB9007-1EFA-4814-BC15-DB0370B84E22}
+		{11B88EB7-66BE-402A-A4E0-144220EBD8B9} = {BAAF9837-1DB5-4032-AB2A-2901E6EE6EF8}
+		{A3124728-6766-48A3-BA1A-5CB119924395} = {11B88EB7-66BE-402A-A4E0-144220EBD8B9}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {18C80710-C9E9-488B-9100-1E4BF8B18038}
 
@@ -0,0 +1,186 @@
+using DynamicAuthorization.Mvc.Core;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.EntityFrameworkCore;
+using SampleMvc2WebApp.Areas.Access.Models;
+using System.ComponentModel;
+using System.Linq;
+using System.Threading.Tasks;
+
+namespace SampleMvc2WebApp.Areas.Access.Controllers
+{
+    [Area("Access"), Authorize]
+    [DisplayName("Role Management")]
+    public class RoleController : Controller
+    {
+        private readonly IMvcControllerDiscovery _mvcControllerDiscovery;
+        private readonly IRoleAccessStore _roleAccessStore;
+        private readonly RoleManager<IdentityRole> _roleManager;
+
+        public RoleController(
+            IMvcControllerDiscovery mvcControllerDiscovery,
+            IRoleAccessStore roleAccessStore,
+            RoleManager<IdentityRole> roleManager
+            )
+        {
+            _mvcControllerDiscovery = mvcControllerDiscovery;
+            _roleManager = roleManager;
+            _roleAccessStore = roleAccessStore;
+        }
+
+        // GET: Role
+        [DisplayName("Role List")]
+        public async Task<ActionResult> Index()
+        {
+            var roles = await _roleManager.Roles.ToListAsync();
+
+            return View(roles);
+        }
+
+        [DisplayName("Create Role")]
+        // GET: Role/Create
+        public ActionResult Create()
+        {
+            var controllers = _mvcControllerDiscovery.GetControllers();
+            ViewData["Controllers"] = controllers;
+
+            return View();
+        }
+
+        // POST: Role/Create
+        [HttpPost, ValidateAntiForgeryToken]
+        public async Task<ActionResult> Create(RoleViewModel viewModel)
+        {
+            if (!ModelState.IsValid)
+            {
+                ViewData["Controllers"] = _mvcControllerDiscovery.GetControllers();
+                return View(viewModel);
+            }
+
+            var role = new IdentityRole { Name = viewModel.Name };
+            var result = await _roleManager.CreateAsync(role);
+
+            if (!result.Succeeded)
+            {
+                foreach (var error in result.Errors)
+                    ModelState.AddModelError("", error.Description);
+
+                ViewData["Controllers"] = _mvcControllerDiscovery.GetControllers();
+                return View(viewModel);
+            }
+
+            if (viewModel.SelectedControllers != null && viewModel.SelectedControllers.Any())
+            {
+                foreach (var controller in viewModel.SelectedControllers)
+                    foreach (var action in controller.Actions)
+                        action.ControllerId = controller.Id;
+
+                var roleAccess = new RoleAccess
+                {
+                    Controllers = viewModel.SelectedControllers.ToList(),
+                    RoleId = role.Id
+                };
+                await _roleAccessStore.AddRoleAccessAsync(roleAccess);
+            }
+
+            return RedirectToAction(nameof(Index));
+        }
+
+        // GET: Role/Edit/5
+        [DisplayName("Edit Role")]
+        public async Task<ActionResult> Edit(string id)
+        {
+            ViewData["Controllers"] = _mvcControllerDiscovery.GetControllers();
+            var role = await _roleManager.FindByIdAsync(id);
+            if (role == null)
+                return NotFound();
+
+            var accessList = await _roleAccessStore.GetRoleAccessAsync(role.Id);
+            var viewModel = new RoleViewModel
+            {
+                Name = role.Name,
+                SelectedControllers = accessList?.Controllers
+            };
+
+            return View(viewModel);
+        }
+
+        // POST: Role/Edit/5
+        [HttpPost, ValidateAntiForgeryToken]
+        public async Task<ActionResult> Edit(string id, RoleViewModel viewModel)
+        {
+            if (!ModelState.IsValid)
+            {
+                ViewData["Controllers"] = _mvcControllerDiscovery.GetControllers();
+                return View(viewModel);
+            }
+
+            // Check role exit
+            var role = await _roleManager.FindByIdAsync(id);
+            if (role == null)
+            {
+                ModelState.AddModelError("", "Role not found");
+                ViewData["Controllers"] = _mvcControllerDiscovery.GetControllers();
+                return View();
+            }
+
+            // Update role if role's name is changed
+            if (role.Name != viewModel.Name)
+            {
+                role.Name = viewModel.Name;
+                var result = await _roleManager.UpdateAsync(role);
+                if (!result.Succeeded)
+                {
+                    foreach (var error in result.Errors)
+                        ModelState.AddModelError("", error.Description);
+
+                    ViewData["Controllers"] = _mvcControllerDiscovery.GetControllers();
+                    return View(viewModel);
+                }
+            }
+
+            // Update role access list
+            if (viewModel.SelectedControllers != null && viewModel.SelectedControllers.Any())
+            {
+                foreach (var controller in viewModel.SelectedControllers)
+                    foreach (var action in controller.Actions)
+                        action.ControllerId = controller.Id;
+            }
+
+            var roleAccess = new RoleAccess
+            {
+                Controllers = viewModel.SelectedControllers?.ToList(),
+                RoleId = role.Id
+            };
+            await _roleAccessStore.EditRoleAccessAsync(roleAccess);
+
+            return RedirectToAction(nameof(Index));
+        }
+
+        // POST: Role/Delete/5
+        [HttpDelete("role/{id}")]
+        public async Task<ActionResult> Delete(string id)
+        {
+            var role = await _roleManager.FindByIdAsync(id);
+            if (role == null)
+            {
+                ModelState.AddModelError("Error", "Role not found");
+                return BadRequest(ModelState);
+            }
+
+            var result = await _roleManager.DeleteAsync(role);
+            if (!result.Succeeded)
+            {
+                foreach (var error in result.Errors)
+                    ModelState.AddModelError("Error", error.Description);
+
+                return BadRequest(ModelState);
+            }
+
+            await _roleAccessStore.RemoveRoleAccessAsync(role.Id);
+
+            return Ok(new { });
+        }
+    }
+}
@@ -0,0 +1,109 @@
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.EntityFrameworkCore;
+using SampleMvc2WebApp.Areas.Access.Models;
+using SampleMvc2WebApp.Data;
+using System.Collections.Generic;
+using System.ComponentModel;
+using System.Linq;
+using System.Threading.Tasks;
+
+namespace SampleMvc2WebApp.Areas.Access.Controllers
+{
+    [Area("Access"), Authorize]
+    [DisplayName("User Role Management")]
+    public class UserRoleController : Controller
+    {
+        private readonly ApplicationDbContext _dbContext;
+        private readonly RoleManager<IdentityRole> _roleManager;
+        private readonly UserManager<IdentityUser> _userManager;
+
+        public UserRoleController(
+            ApplicationDbContext dbContext,
+            RoleManager<IdentityRole> roleManager,
+            UserManager<IdentityUser> userManager
+            )
+        {
+            _roleManager = roleManager;
+            _userManager = userManager;
+            _dbContext = dbContext;
+        }
+
+        // GET: Access
+        [DisplayName("User List")]
+        public async Task<ActionResult> Index()
+        {
+            var query = await (
+                    from user in _dbContext.Users
+                    join ur in _dbContext.UserRoles on user.Id equals ur.UserId into userRoles
+                    from userRole in userRoles.DefaultIfEmpty()
+                    join rle in _dbContext.Roles on userRole.RoleId equals rle.Id into roles
+                    from role in roles.DefaultIfEmpty()
+                    select new { user, userRole, role }
+                ).ToListAsync();
+
+            var userList = new List<UserRoleViewModel>();
+            foreach (var grp in query.GroupBy(q => q.user.Id))
+            {
+                var first = grp.First();
+                userList.Add(new UserRoleViewModel
+                {
+                    UserId = first.user.Id,
+                    UserName = first.user.UserName,
+                    Roles = first.role != null ? grp.Select(g => g.role).Select(r => r.Name) : new List<string>()
+                });
+            }
+
+            return View(userList);
+        }
+
+        // GET: Access/Edit
+        [DisplayName("Edit User Roles")]
+        public async Task<ActionResult> Edit(string id)
+        {
+            var user = await _userManager.FindByIdAsync(id);
+            if (user == null)
+                return NotFound();
+
+            var userRoles = await _userManager.GetRolesAsync(user);
+            var userViewModel = new UserRoleViewModel
+            {
+                UserId = user.Id,
+                UserName = user.UserName,
+                Roles = userRoles
+            };
+
+            var roles = await _roleManager.Roles.ToListAsync();
+            ViewData["Roles"] = roles;
+
+            return View(userViewModel);
+        }
+
+        // POST: Access/Edit
+        [HttpPost]
+        [ValidateAntiForgeryToken]
+        public async Task<ActionResult> Edit(UserRoleViewModel viewModel)
+        {
+            if (!ModelState.IsValid)
+            {
+                ViewData["Roles"] = await _roleManager.Roles.ToListAsync();
+                return View(viewModel);
+            }
+
+            var user = _dbContext.Users.Find(viewModel.UserId);
+            if (user == null)
+            {
+                ModelState.AddModelError("", "User not found");
+                ViewData["Roles"] = await _roleManager.Roles.ToListAsync();
+                return View();
+            }
+
+            var userRoles = await _userManager.GetRolesAsync(user);
+            await _userManager.RemoveFromRolesAsync(user, userRoles);
+            await _userManager.AddToRolesAsync(user, viewModel.Roles);
+
+            return RedirectToAction("Index");
+        }
+    }
+}
@@ -0,0 +1,15 @@
+using DynamicAuthorization.Mvc.Core;
+using System.Collections.Generic;
+using System.ComponentModel.DataAnnotations;
+
+namespace SampleMvc2WebApp.Areas.Access.Models
+{
+    public class RoleViewModel
+    {
+        [Required]
+        [StringLength(256, ErrorMessage = "The {0} must be at least {2} characters long.")]
+        public string Name { get; set; }
+
+        public IEnumerable<MvcControllerInfo> SelectedControllers { get; set; }
+    }
+}
@@ -0,0 +1,15 @@
+using System.Collections.Generic;
+using System.ComponentModel.DataAnnotations;
+
+namespace SampleMvc2WebApp.Areas.Access.Models
+{
+    public class UserRoleViewModel
+    {
+        [Required]
+        public string UserId { get; set; }
+
+        public string UserName { get; set; }
+
+        public IEnumerable<string> Roles { get; set; }
+    }
+}