Added documentation and improved permission validation

2024-08-18 12:01:17 +02:00
parent 893431536d
commit 4aaf126c9d
16 changed files with 202 additions and 35 deletions
--- a/HopFrame.Web/Pages/Administration/GroupsPage.razor
+++ b/HopFrame.Web/Pages/Administration/GroupsPage.razor
@@ -16,7 +16,7 @@
@using HopFrame.Web.Pages.Administration.Layout

 <PageTitle>Groups</PageTitle>
-<AuthorizedView Permission="@AdminPermissions.ViewGroups" RedirectIfUnauthorized="administration/login?redirect=/administration/groups"/>
+<AuthorizedView Permission="@Security.AdminPermissions.ViewGroups" RedirectIfUnauthorized="administration/login?redirect=/administration/groups"/>

 <GroupAddModal ReloadPage="Reload" @ref="_groupAddModal"/>

@@ -32,7 +32,7 @@
        <input class="form-control me-2 input-dark" type="search" placeholder="Search" aria-label="Search" @bind="_searchText">
        <BSButton Color="BSColor.Success" IsOutlined="true" type="submit">Search</BSButton>
    </form>
-    <AuthorizedView Permission="@AdminPermissions.AddGroup">
+    <AuthorizedView Permission="@Security.AdminPermissions.AddGroup">
        <BSButton IsSubmit="false" Color="BSColor.Success" Target="add-user" OnClick="() => _groupAddModal.ShowAsync()">Add Group</BSButton>
    </AuthorizedView>
 </div>
@@ -112,8 +112,8 @@
    protected override async Task OnInitializedAsync() {
        _groups = await Permissions.GetPermissionGroups();
        
-        _hasEditPrivileges = await Permissions.HasPermission(AdminPermissions.EditGroup, Auth.User.Id);
-        _hasDeletePrivileges = await Permissions.HasPermission(AdminPermissions.DeleteGroup, Auth.User.Id);
+        _hasEditPrivileges = await Permissions.HasPermission(Security.AdminPermissions.EditGroup, Auth.User.Id);
+        _hasDeletePrivileges = await Permissions.HasPermission(Security.AdminPermissions.DeleteGroup, Auth.User.Id);
    }

    private async Task Reload() {
--- a/HopFrame.Web/Pages/Administration/Layout/AdminLayout.razor
+++ b/HopFrame.Web/Pages/Administration/Layout/AdminLayout.razor
@@ -2,7 +2,7 @@
@using BlazorStrap.V5
@inherits LayoutComponentBase

-<AuthorizedView Permission="@AdminPermissions.IsAdmin" RedirectIfUnauthorized="administration/login" />
+<AuthorizedView Permission="@Security.AdminPermissions.IsAdmin" RedirectIfUnauthorized="administration/login" />

 <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-QWTKZyjpPEjISv5WaRU9OFeRpok6YctnYmDr5pNlyT2bRjXh0JMhjY6hW+ALEwIH" crossorigin="anonymous">

--- a/HopFrame.Web/Pages/Administration/Layout/AdminMenu.razor
+++ b/HopFrame.Web/Pages/Administration/Layout/AdminMenu.razor
@@ -53,13 +53,13 @@
            Name = "Users",
            Url = "administration/users",
            Description = "On this page you can manage all user accounts.",
-            Permission = AdminPermissions.ViewUsers
+            Permission = Security.AdminPermissions.ViewUsers
        },
        new () {
            Name = "Groups",
            Url = "administration/groups",
            Description = "On this page you can view, create, edit and delete permission groups.",
-            Permission = AdminPermissions.ViewGroups
+            Permission = Security.AdminPermissions.ViewGroups
        }
    };

--- a/HopFrame.Web/Pages/Administration/UsersPage.razor
+++ b/HopFrame.Web/Pages/Administration/UsersPage.razor
@@ -16,7 +16,7 @@
@using HopFrame.Web.Components.Administration

 <PageTitle>Users</PageTitle>
-<AuthorizedView Permission="@AdminPermissions.ViewUsers" RedirectIfUnauthorized="administration/login?redirect=/administration/users"/>
+<AuthorizedView Permission="@Security.AdminPermissions.ViewUsers" RedirectIfUnauthorized="administration/login?redirect=/administration/users"/>

 <UserAddModal @ref="_userAddModal" ReloadPage="Reload"/>
 <UserEditModal @ref="_userEditModal" ReloadPage="Reload"/>
@@ -33,7 +33,7 @@
        <input class="form-control me-2 input-dark" type="search" placeholder="Search" aria-label="Search" @bind="_searchText">
        <BSButton Color="BSColor.Success" IsOutlined="true" type="submit">Search</BSButton>
    </form>
-    <AuthorizedView Permission="@AdminPermissions.AddUser">
+    <AuthorizedView Permission="@Security.AdminPermissions.AddUser">
        <BSButton IsSubmit="false" Color="BSColor.Success" Target="add-user" OnClick="() => _userAddModal.ShowAsync()">Add User</BSButton>
    </AuthorizedView>
 </div>
@@ -123,8 +123,8 @@
            _userGroups.Add(user.Id, groups.LastOrDefault());
        }

-        _hasEditPrivileges = await PermissionsService.HasPermission(AdminPermissions.EditUser, Auth.User.Id);
-        _hasDeletePrivileges = await PermissionsService.HasPermission(AdminPermissions.DeleteUser, Auth.User.Id);
+        _hasEditPrivileges = await PermissionsService.HasPermission(Security.AdminPermissions.EditUser, Auth.User.Id);
+        _hasDeletePrivileges = await PermissionsService.HasPermission(Security.AdminPermissions.DeleteUser, Auth.User.Id);
    }

    private async Task Reload() {