写这个的原因
现在BootstrapBlazor
In the period of big update,Menu
Components to be changed to a generic model.
We this one should be haveLayout
改了,但是改Layout
Sure to involve the menu,If write now,To get into a state of release is out of date,就很尴尬,So just a little behind a tow.
And someone said yesterday I useOnNavigateAsync
In violation of the principle of single,With a strategy,So we say that the strategy how to do it here.
Add strategy related code
First of all, we should have an implementationIAuthorizationRequirement
接口的类,This class has no special requirements,We can write an empty class to deal with.
public class AdminRequirement : IAuthorizationRequirement
{
}
然后要写一个Handler,来继承这个AuthorizationHandler<AdminRequirement>
,The generics are we implementing an interface class above.
public class AdminRequirementHandler : AuthorizationHandler<AdminRequirement>
{
protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, AdminRequirement requirement)
{
context.Succeed(requirement);
return Task.CompletedTask;
}
}
实现HandleRequirementAsync
方法,This method is the key to our method,The realization of the authorization in this.
Among them the authorization of the default state isFail
,If we want to allow through,就执行context.Succeed(requirement);
To tell strategy certification success for us.
添加授权认证
在Program.cs
We need to put in both registered in,The first registered ourHandler
builder.Services.AddSingleton<IAuthorizationHandler, AdminRequirementHandler>();
Then register our authorization policy
builder.Services.AddAuthorization(options =>
{
options.AddPolicy("Admin", policy => policy.Requirements.Add(new AdminRequirement()));
});
这里的Admin
That's our policy name.
使用策略
Increase in the position we need certification in feature@attribute [Authorize(Policy = "Admin")]
,And then in our authorization policy breaking point,Should you will find the breakpoint into.
将RouteData传入
因为BlazorWe can't get insideHttpContext
,所以没法用Request.Path
The way to geturl,So can only use toRouteData
作为Resource
传入,然后使用attribute
的方式拿到.
这里我们在App.razor
里传入routeData
<AuthorizeRouteView Resource="@routeData" RouteData="@routeData" DefaultLayout="@typeof(MainLayout)">
<NotAuthorized>
<RedirectToLogin></RedirectToLogin>
</NotAuthorized>
</AuthorizeRouteView>
然后修改HandleRequirementAsync
.
if (context.User.Identity?.IsAuthenticated != true)
{
return Task.CompletedTask;
}
if (!int.TryParse(context.User.FindFirst(ClaimTypes.Role)?.Value, out var roleId))
{
return Task.CompletedTask;
}
if (context.Resource is RouteData routeData)
{
var routeAttr = routeData.PageType.CustomAttributes.FirstOrDefault(x =>
x.AttributeType == typeof(RouteAttribute));
if (routeAttr == null)
{
context.Succeed(requirement);
}
else
{
var url = routeAttr.ConstructorArguments[0].Value as string;
var permission = PermissionEntity
.Where(x => x.Roles!.Any(y => y.Id == roleId) && x.Url == url).First();
if (permission != null)
{
context.Succeed(requirement);
}
}
}
return Task.CompletedTask;
}
Keep up with a treatment whole here,First of all, we judge if the user didn't log in,It is direct failure,If logged in we will go to takeRoleId
,Don't get natural failure.
Differences in the following,We can't directly getPath
,So we can only go toRouteAttribute
,其实就是我们的@page
路由.Here we can also define your own oneAttribute
取自己的.
If we didn't find the,Prove that this should not ablazor页面,We will temporarily make it success.
如果找到了,那么我们就找routeAttr.ConstructorArguments[0].Value as string
,There is a corresponding routing address.
Here are the same as before,Use to judge whether the routing address and permission to go.
源码在github: https://github.com/j4587698/BlazorLearn,分支lesson6
从零开始Blazor Server(6)--Based on the strategy of authentication more related articles
- Forms身份验证和基于Role的权限验证
Forms身份验证和基于Role的权限验证 从Membership到SimpleMembership再到ASP.NET Identity,ASP.NET每一次更换身份验证的组件,都让我更失望.Memb ...
- 从零开始学 Java - Spring AOP 实现用户权限验证
每个项目都会有权限管理系统 无论你是一个简单的企业站,还是一个复杂到爆的平台级项目,都会涉及到用户登录.权限管理这些必不可少的业务逻辑.有人说,企业站需要什么权限管理阿?那行吧,你那可能叫静态页面,就 ...
- 从壹开始前后端分离 [ vue + .netcore 补程 ] 三十一║ Nuxt终篇:基于Vuex的权限验证探究
缘起 哈喽大家好,今天周四啦,楼主明天要正式放假了,这里先祝大家节日快乐咯,希望在家里能继续研究点儿东西吧,今天呢是 nuxt 的最后一篇,主要是对权限登录进行研究,这一块咱们之前在说第一个项目的时候 ...
- ASP.NET:Forms身份验证和基于Role的权限验证
从Membership到SimpleMembership再到ASP.NET Identity,ASP.NET每一次更换身份验证的组件,都让我更失望.Membership的唯一作用就是你可以参考它的实现 ...
- Asp.net Core, 基于 claims 实现权限验证 - 引导篇
什么是Claims? The direct reading some other great god,解释得更好. 相关文章阅读: http://www.cnblogs.com/JustRun1983/p/4708176.html http://w ...
- Asp.net Core2.0, 基于 claims 实现权限验证
https://www.cnblogs.com/KimmyLee/p/6430474.html
- 图文详解基于角色的权限控制模型RBAC
我们开发一个系统,必然面临权限控制的问题,即不同的用户具有不同的访问.操作.数据权限.形成理论的权限控制模型有:自主访问控制(DAC: Discretionary Access Control).强制 ...
- Asp.net Mvc4 基于Authorize实现的模块权限验证方式
在MVC中,我们可以通过在action或者controller上设置Authorize[Role="xxx"] 的方式来设置用户对action的访问权限.显然,这样并不能满足我们的 ...
- SpringBoot整合Shiro实现基于角色的权限访问控制(RBAC)系统简单设计从零搭建
SpringBoot整合Shiro实现基于角色的权限访问控制(RBAC)系统简单设计从零搭建 技术栈 : SpringBoot + shiro + jpa + freemark ,因为篇幅原因,这里只 ...
- [Asp.Net Core] 关于 Blazor Server Side 的一些杂项, 感想
在2016年, 本人就开始了一个内部项目, 其特点就是用C#构建DOM树, 然后把DOM同步到浏览器中显示. 并且在一些小工程中使用. 3年下来, 效果很不错, 但因为是使用C#来构建控件树, 在没有 ...
随机推荐
- React的虚拟DOM
ReactJsA feature is introduced virtualdom(Virtual DOM)的概念.为什么我们需要Virtual DOM,Virtual DOM给我们带来了什么优势. First, we need to know about the workflow browser. 当 ...
- [WP8.1UI控件编程]Windows Phone理解和运用ItemTemplate、ContentTemplate和DataTemplate
2.2.5 ItemTemplate.ContentTemplate和DataTemplate 在理解ItemTemplate.ContentTemplate和DataTemplate的关系的之前,我 ...
- http 请求类
1.httpclient请求类 代理demo:http://hc.apache.org/httpcomponents-client-4.3.x/httpclient/examples/org/apac ...
- [Windows Phone] APP上架,遇到错误2001的解决方案.(Error:2001)
[Windows Phone] APP上架,遇到错误2001的解决方案.(Error:2001) 问题情景 最近在开始玩Windows Phone的开发,开发的过程中虽然有点小挫折,但是参考网络许多前 ...
- 前端开发之Chrome插件
Postman - REST Client Postman是Ajax开发的神器,对于Restful开发方式特别有帮助,可以用来模拟各种请求来测试API的正确性,比如用来模拟Ajax请求.它还支持认证, ...
- NeHe OpenGL教程 第一课:OpenGL窗口
转自[翻译]NeHe OpenGL 教程 前言 声明,此 NeHe OpenGL教程系列文章由51博客yarin翻译(2010-08-19),本博客为转载并稍加整理与修改.对NeHe的OpenGL管线 ...
- nginx作反向代理,实现负载均衡
nginx作反向代理,Load balancing in the normal way to fix ngixn,方法可参考http://www.cnblogs.com/lin3615/p/4376224.htmlWhich made the reverse proxy server configuration is as follows ...
- Controller does not have enough bandwidth available forUSBThe large capacity storage solutions
With the demise of the era of network backup,Recently with a mobile hard disk.Mobile hard disk is nowUSB3.0,传输速度比USB2.0要快很多.But after link laptop found transmission speed in20MB/s左右,跟USB2.0速度差不多,And can't reach the ...
- time模块的学习
time模块不在python35\lib的安装目录下,是因为该模块是用C语言编写,内置到python解释器中.各种时间格式相互转换关系: import time,datetime # print(ti ...
- 加快Android Studio的编译速度
从Eclipse切换到Android Studio后,感觉Android Studio的build速度比Eclipse慢很多,以下几个方法可以提高Android Studio的编译速度 使用Gradl ...