Attribute是一个类,用来对程序中的元素进行标注,如类型、字段、方法和属性等。Attributes和Microsoft .NET Framework文件的元数据保存在一起,可以用来向运行时描述你的代码,或者在程序运行的时候影响应用程序的行为。根据不同的标签做出不同的处理。
[AttributeUsage(AttributeTargets.Class | AttributeTargets.Method, AllowMultiple = false)] public class UserAuthorizeAttribute : AuthorizeAttribute { #region 字段和属性 /// <summary> /// 模块别名,可配置更改 /// </summary> public string ModuleAlias { get; set; } /// <summary> /// 权限动作 /// </summary> public string OperaAction { get; set; } /// <summary> /// 权限访问控制器参数 /// </summary> private string Sign { get; set; } /// <summary> /// 基类实例化 /// </summary> public BaseController baseController = new BaseController(); #endregion #region 权限认证 /// <summary> /// 权限认证 /// </summary> public override void OnAuthorization(AuthorizationContext filterContext) { try { HttpContext.Current.Request.UrlReferrer.ToString(); } catch { filterContext.Result = new EmptyResult(); return; } //1、判断模块是否对应 if (string.IsNullOrEmpty(ModuleAlias)) { filterContext.HttpContext.Response.Write(" <script type='text/javascript'> alert('^您没有访问该页面的权限!'); </script>"); filterContext.RequestContext.HttpContext.Response.End(); filterContext.Result = new EmptyResult(); return; } //2、判断用户是否存在 if (baseController.CurrentUser == null) { filterContext.HttpContext.Response.Write(" <script type='text/javascript'> alert('^登录已过期,请重新登录!');window.top.location='/'; </script>"); filterContext.RequestContext.HttpContext.Response.End(); filterContext.Result = new EmptyResult(); return; } //对比变量,用于权限认证 var alias = ModuleAlias; #region 配置Sign调取控制器标识 Sign = filterContext.RequestContext.HttpContext.Request.QueryString["sign"]; if (!string.IsNullOrEmpty(Sign)) { if (("," + ModuleAlias.ToLower()).Contains("," + Sign.ToLower())) { alias = Sign; filterContext.Controller.ViewData["Sign"] = Sign; } } #endregion //3、调用下面的方法,验证是否有访问此页面的权限,查看加操作 var moduleId = baseController.CurrentUser.Modules.Where(p => p.ALIAS.ToLower() == alias.ToLower()).Select(p => p.ID).FirstOrDefault(); bool _blAllowed = this.IsAllowed(baseController.CurrentUser, moduleId, OperaAction); if (!_blAllowed) { filterContext.HttpContext.Response.Write(" <script type='text/javascript'> alert('您没有访问当前页面的权限!');</script>"); filterContext.RequestContext.HttpContext.Response.End(); filterContext.Result = new EmptyResult(); return; } //4、有权限访问页面,将此页面的权限集合传给页面 filterContext.Controller.ViewData["PermissionList"] = GetPermissByJson(baseController.CurrentUser, moduleId); } /// <summary> /// 获取操作权限Json字符串,供视图JS判断使用 /// </summary> string GetPermissByJson(Account account, int moduleId) { //操作权限 var _varPerListThisModule = account.Permissions.Where(p => p.MODULEID == moduleId).Select(R => new { R.PERVALUE }).ToList(); return Common.JsonConverter.Serialize(_varPerListThisModule); } /// <summary> /// 功能描述:判断用户是否有此模块的操作权限 /// </summary> bool IsAllowed(Account user, int moduleId, string action) { //判断入口 if (user == null || user.Id <= 0 || moduleId == 0 || string.IsNullOrEmpty(action)) return false; //验证权限 var permission = user.Permissions.Where(p => p.MODULEID == moduleId); action = action.Trim(','); if (action.IndexOf(',') > 0) { permission = permission.Where(p => action.ToLower().Contains(p.PERVALUE.ToLower())); } else { permission = permission.Where(p => p.PERVALUE.ToLower() == action.ToLower()); } return permission.Any(); } #endregion }
/// <summary> /// 加载主页 /// </summary> /// <returns></returns> [UserAuthorizeAttribute(ModuleAlias = "Role", OperaAction = "View")] public ActionResult Index() {}