添加项目文件。

2023-03-03 16:07:50 +08:00
parent 2c462551b6
commit 011039960e
585 changed files with 362460 additions and 0 deletions
--- a/HT.Cloud.Web/Handler/HandlerAuthorizeAttribute.cs
+++ b/HT.Cloud.Web/Handler/HandlerAuthorizeAttribute.cs
@ -0,0 +1,88 @@
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.Filters;
+using HT.Cloud.Code;
+using HT.Cloud.Service.SystemOrganize;
+
+/// <summary>
+/// 权限验证
+/// </summary>
+namespace HT.Cloud.Web
+{
+	public class HandlerAuthorizeAttribute : ActionFilterAttribute
+	{
+		private readonly bool _needAuth;
+
+		private string _authorize { get; set; }
+
+		/// <summary>
+		/// 权限特性
+		/// </summary>
+		/// <param name="authorize">权限参数</param>
+		/// <param name="needAuth">是否鉴权</param>
+		public HandlerAuthorizeAttribute(string authorize = "", bool needAuth = true)
+		{
+			_authorize = authorize.ToLower();
+			_needAuth = needAuth;
+		}
+
+		public override void OnActionExecuting(ActionExecutingContext filterContext)
+		{
+			if (OperatorProvider.Provider.GetCurrent() != null && OperatorProvider.Provider.GetCurrent().IsSuperAdmin)
+			{
+				return;
+			}
+			if (!_needAuth)
+			{
+				return;
+			}
+			if (!string.IsNullOrEmpty(_authorize) && AuthorizeCheck(filterContext))
+			{
+				return;
+			}
+			if (!ActionAuthorize(filterContext))
+			{
+				OperatorProvider.Provider.EmptyCurrent("pc_").GetAwaiter().GetResult();
+				//filterContext.HttpContext.Response.WriteAsync("<script>top.location.href ='" + filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=403" + "';if(document.all) window.event.returnValue = false;</script>");
+				filterContext.Result = new RedirectResult(filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=403");
+				return;
+			}
+		}
+
+		private bool ActionAuthorize(ActionExecutingContext filterContext)
+		{
+			try
+			{
+				OperatorResult result = OperatorProvider.Provider.IsOnLine("pc_").GetAwaiter().GetResult();
+				if (result.stateCode <= 0)
+				{
+					return false;
+				}
+				var action = GlobalContext.HttpContext.Request.Path;
+				return GlobalContext.GetRequiredService<RoleAuthorizeService>().ActionValidate(action).GetAwaiter().GetResult();
+			}
+			catch (System.Exception ex)
+			{
+				LogHelper.WriteWithTime(ex);
+				return false;
+			}
+		}
+
+		private bool AuthorizeCheck(ActionExecutingContext filterContext)
+		{
+			try
+			{
+				OperatorResult result = OperatorProvider.Provider.IsOnLine("pc_").GetAwaiter().GetResult();
+				if (result.stateCode <= 0)
+				{
+					return false;
+				}
+				return GlobalContext.GetRequiredService<RoleAuthorizeService>().ActionValidate(_authorize, true).GetAwaiter().GetResult();
+			}
+			catch (System.Exception ex)
+			{
+				LogHelper.WriteWithTime(ex);
+				return false;
+			}
+		}
+	}
+}
--- a/HT.Cloud.Web/Handler/HandlerLoginAttribute.cs
+++ b/HT.Cloud.Web/Handler/HandlerLoginAttribute.cs
@ -0,0 +1,138 @@
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.Filters;
+using System;
+using System.Reflection;
+using HT.Cloud.Code;
+using HT.Cloud.Service.SystemOrganize;
+
+/// <summary>
+/// 登录验证
+/// </summary>
+namespace HT.Cloud.Web
+{
+	public class HandlerLoginAttribute : ActionFilterAttribute
+	{
+		private readonly bool _needLogin;
+
+		/// <summary>
+		/// 登录特性
+		/// </summary>
+		/// <param name="needLogin">是否验证</param>
+		public HandlerLoginAttribute(bool needLogin = true)
+		{
+			_needLogin = needLogin;
+		}
+
+		public override void OnActionExecuting(ActionExecutingContext filterContext)
+		{
+			var description =
+				(Microsoft.AspNetCore.Mvc.Controllers.ControllerActionDescriptor)filterContext.ActionDescriptor;
+
+			//添加有允许匿名的Action，可以不用登录访问，如Login/Index
+			//控制器整体忽略或者单独方法忽略
+			var anonymous = description.ControllerTypeInfo.GetCustomAttribute(typeof(AllowAnonymousAttribute));
+			var methodanonymous = description.MethodInfo.GetCustomAttribute(typeof(AllowAnonymousAttribute));
+			if (anonymous != null || methodanonymous != null)
+			{
+				return;
+			}
+			if (!_needLogin)
+			{
+				return;
+			}
+			if (OperatorProvider.Provider.GetCurrent() == null)
+			{
+				WebHelper.WriteCookie("WaterCloud_login_error", "overdue");
+				//filterContext.HttpContext.Response.WriteAsync("<script>top.location.href ='" + filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=408" + "';if(document.all) window.event.returnValue = false;</script>");
+				OperatorProvider.Provider.EmptyCurrent("pc_").GetAwaiter().GetResult();
+				CookieOptions options = new CookieOptions();
+				options.Expires = DateTime.Now.AddDays(1);
+				options.Path = "/";
+				if (filterContext.HttpContext.Request.Path != "/Home/Index")
+				{
+					var url = filterContext.HttpContext.Request.Path;
+					//检查菜单url查看是否存在
+					if (GlobalContext.GetRequiredService<RoleAuthorizeService>().CheckReturnUrl("", url, true).GetAwaiter().GetResult())
+					{
+						WebHelper.WriteCookie("wc_realreturnurl", filterContext.HttpContext.Request.PathBase + url, options);
+					}
+				}
+				filterContext.Result = new RedirectResult(filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=408");
+				return;
+			}
+			//登录检测
+			if (!this.LoginAuthorize(filterContext))
+			{
+				return;
+			}
+			//管理员跳过检测(管理员授权或者关闭需要清理缓存保证安全)
+			if (OperatorProvider.Provider.GetCurrent().IsSuperAdmin)
+			{
+				return;
+			}
+			//用户和角色检测
+			if (!this.RoleAuthorize())
+			{
+				OperatorProvider.Provider.EmptyCurrent("pc_").GetAwaiter().GetResult();
+				//filterContext.HttpContext.Response.WriteAsync("<script>top.location.href ='" + filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=403" + "';if(document.all) window.event.returnValue = false;</script>");
+				filterContext.Result = new RedirectResult(filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=408");
+				return;
+			}
+			base.OnActionExecuting(filterContext);
+		}
+
+		private bool LoginAuthorize(ActionExecutingContext filterContext)
+		{
+			try
+			{
+				OperatorResult result = OperatorProvider.Provider.IsOnLine("pc_").GetAwaiter().GetResult();
+				switch (result.stateCode)
+				{
+					case 1:
+						return true;
+
+					case 0:
+						OperatorProvider.Provider.EmptyCurrent("pc_").GetAwaiter().GetResult();
+						//filterContext.HttpContext.Response.WriteAsync("<script>top.location.href ='" + filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=408" + "';if(document.all) window.event.returnValue = false;</script>");
+						filterContext.Result = new RedirectResult(filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=408");
+						return false;
+
+					case -1:
+						OperatorProvider.Provider.EmptyCurrent("pc_").GetAwaiter().GetResult();
+						//filterContext.HttpContext.Response.WriteAsync("<script>top.location.href ='" + filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=408" + "';if(document.all) window.event.returnValue = false;</script>");
+						filterContext.Result = new RedirectResult(filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=408");
+						return false;
+
+					case -2:
+						OperatorProvider.Provider.EmptyCurrent("pc_").GetAwaiter().GetResult();
+						//filterContext.HttpContext.Response.WriteAsync("<script>top.location.href ='" + filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=401" + "';if(document.all) window.event.returnValue = false;</script>");
+						filterContext.Result = new RedirectResult(filterContext.HttpContext.Request.PathBase + "/Home/Error?msg=401");
+						return false;
+
+					default:
+						return false;
+				}
+			}
+			catch (System.Exception ex)
+			{
+				LogHelper.WriteWithTime(ex);
+				return false;
+			}
+		}
+
+		private bool RoleAuthorize()
+		{
+			try
+			{
+				return GlobalContext.GetRequiredService<RoleAuthorizeService>().RoleValidate().GetAwaiter().GetResult();
+			}
+			catch (System.Exception ex)
+			{
+				LogHelper.WriteWithTime(ex);
+				return false;
+			}
+		}
+	}
+}