Add properties for permission prefixes on BC (#533)

claudiamurialdo · web-flow · commit 1c2a57f4c19c · 2022-02-01T15:52:38.000-03:00
* Add properties for permission prefixes on BC

* Minor fix replace "" by String.Empty.
diff --git a/dotnet/src/dotnetcore/GxClasses.Web/Middleware/GXBCRestService.cs b/dotnet/src/dotnetcore/GxClasses.Web/Middleware/GXBCRestService.cs
@@ -29,7 +29,7 @@ public override Task Post()
 		{
 			try
 			{
-				if (!IsAuthenticated())
+				if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceInsertPermissionPrefix))
 				{
 					return Task.CompletedTask;
 				}
@@ -101,7 +101,7 @@ public override Task Get(object parameters)
 		{
 			try
 			{
-				if (!IsAuthenticated())
+				if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceExecutePermissionPrefix))
 				{
 					return Task.CompletedTask;
 				}
@@ -144,7 +144,7 @@ public override Task Delete(object parameters)
 		{
 			try
 			{
-				if (!IsAuthenticated())
+				if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceDeletePermissionPrefix))
 				{
 					return Task.CompletedTask;
 				}
@@ -182,7 +182,7 @@ public override Task Put(object parameters)
 		{
 			try
 			{
-				if (!IsAuthenticated())
+				if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceUpdatePermissionPrefix))
 				{
 					return Task.CompletedTask;
 				}
diff --git a/dotnet/src/dotnetframework/GxClasses/Helpers/HttpHelper.cs b/dotnet/src/dotnetframework/GxClasses/Helpers/HttpHelper.cs
@@ -128,7 +128,7 @@ private static HttpStatusCode MapStatusCode(string statusCode)
 			else
 				return HttpStatusCode.Unauthorized;
 		}
-		private static HttpStatusCode GamCodeToHttpStatus(string code)
+		private static HttpStatusCode GamCodeToHttpStatus(string code, HttpStatusCode defaultCode=HttpStatusCode.Unauthorized)
 		{
 			if (code == GAM_CODE_OTP_USER_ACCESS_CODE_SENT || code == GAM_CODE_TFA_USER_MUST_VALIDATE)
 			{
@@ -138,7 +138,7 @@ private static HttpStatusCode GamCodeToHttpStatus(string code)
 			{
 				return HttpStatusCode.Forbidden;
 			}
-			return HttpStatusCode.Unauthorized;
+			return defaultCode;
 		}
 		private static void SetJsonError(HttpContext httpContext, string statusCode, string statusDescription)
 		{
@@ -158,9 +158,9 @@ private static void SetJsonError(HttpContext httpContext, string statusCode, str
 			}
 #endif
 		}
-		internal static void SetGamError(HttpContext httpContext, string code, string message)
+		internal static void SetGamError(HttpContext httpContext, string code, string message, HttpStatusCode defaultCode = HttpStatusCode.Unauthorized)
 		{
-			SetResponseStatus(httpContext, GamCodeToHttpStatus(code), message);
+			SetResponseStatus(httpContext, GamCodeToHttpStatus(code, defaultCode), message);
 			SetJsonError(httpContext, code, message);
 		}
 		internal static void TraceUnexpectedError(Exception ex)
diff --git a/dotnet/src/dotnetframework/GxClasses/Model/GXBaseObject.cs b/dotnet/src/dotnetframework/GxClasses/Model/GXBaseObject.cs
@@ -41,10 +41,15 @@ public virtual void cleanup() { }
 		public bool IsSynchronizer2 { get { return IsSynchronizer; } }
 		public string ExecutePermissionPrefix2 { get { return ExecutePermissionPrefix; } }
 
+		public virtual string ServiceExecutePermissionPrefix { get { return string.Empty; } }
+		public virtual string ServiceDeletePermissionPrefix { get { return string.Empty; } }
+		public virtual string ServiceInsertPermissionPrefix { get { return string.Empty; } }
+		public virtual string ServiceUpdatePermissionPrefix { get { return string.Empty; } }
+
 		protected virtual bool IntegratedSecurityEnabled { get { return false; } }
 		protected virtual GAMSecurityLevel IntegratedSecurityLevel { get { return 0; } }
 		protected virtual bool IsSynchronizer { get { return false; } }
-		protected virtual string ExecutePermissionPrefix { get { return ""; } }
+		protected virtual string ExecutePermissionPrefix { get { return String.Empty; } }
 
 		public virtual void CallWebObject(string url)
 		{
diff --git a/dotnet/src/dotnetframework/GxClasses/Services/GxRestWrapper.cs b/dotnet/src/dotnetframework/GxClasses/Services/GxRestWrapper.cs
@@ -509,7 +509,7 @@ public bool IsAuthenticated()
 		{
 			return IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ExecutePermissionPrefix2);
 		}
-		private bool IsAuthenticated(GAMSecurityLevel objIntegratedSecurityLevel, bool objIntegratedSecurityEnabled, string objPermissionPrefix)
+		protected bool IsAuthenticated(GAMSecurityLevel objIntegratedSecurityLevel, bool objIntegratedSecurityEnabled, string objPermissionPrefix)
 		{
 			if (!objIntegratedSecurityEnabled)
 			{
@@ -547,16 +547,8 @@ private bool IsAuthenticated(GAMSecurityLevel objIntegratedSecurityLevel, bool o
 						}
 						else
 						{
-							HttpHelper.SetGamError(_httpContext, result.Code, result.Description);
-							if (sessionOk)
-							{
-								SetStatusCode(HttpStatusCode.Forbidden);
-							}
-							else
-							{
-								AddHeader(HttpHeader.AUTHENTICATE_HEADER, HttpHelper.OatuhUnauthorizedHeader(_gxContext.GetServerName(), result.Code, result.Description));
-								SetStatusCode(HttpStatusCode.Unauthorized);
-							}
+							HttpStatusCode defaultStatusCode = sessionOk ? HttpStatusCode.Forbidden : HttpStatusCode.Unauthorized;
+							HttpHelper.SetGamError(_httpContext, result.Code, result.Description, defaultStatusCode);
 							return false;
 						}
 					}

Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,7 @@ public override Task Post()`
`29`	`29`	`{`
`30`	`30`	`try`
`31`	`31`	`{`
`32`		`- if (!IsAuthenticated())`
	`32`	`+ if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceInsertPermissionPrefix))`
`33`	`33`	`{`
`34`	`34`	`return Task.CompletedTask;`
`35`	`35`	`}`
`@@ -101,7 +101,7 @@ public override Task Get(object parameters)`
`101`	`101`	`{`
`102`	`102`	`try`
`103`	`103`	`{`
`104`		`- if (!IsAuthenticated())`
	`104`	`+ if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceExecutePermissionPrefix))`
`105`	`105`	`{`
`106`	`106`	`return Task.CompletedTask;`
`107`	`107`	`}`
`@@ -144,7 +144,7 @@ public override Task Delete(object parameters)`
`144`	`144`	`{`
`145`	`145`	`try`
`146`	`146`	`{`
`147`		`- if (!IsAuthenticated())`
	`147`	`+ if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceDeletePermissionPrefix))`
`148`	`148`	`{`
`149`	`149`	`return Task.CompletedTask;`
`150`	`150`	`}`
`@@ -182,7 +182,7 @@ public override Task Put(object parameters)`
`182`	`182`	`{`
`183`	`183`	`try`
`184`	`184`	`{`
`185`		`- if (!IsAuthenticated())`
	`185`	`+ if (!IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ServiceUpdatePermissionPrefix))`
`186`	`186`	`{`
`187`	`187`	`return Task.CompletedTask;`
`188`	`188`	`}`
Original file line number	Diff line number	Diff line change
`@@ -128,7 +128,7 @@ private static HttpStatusCode MapStatusCode(string statusCode)`
`128`	`128`	`else`
`129`	`129`	`return HttpStatusCode.Unauthorized;`
`130`	`130`	`}`
`131`		`- private static HttpStatusCode GamCodeToHttpStatus(string code)`
	`131`	`+ private static HttpStatusCode GamCodeToHttpStatus(string code, HttpStatusCode defaultCode=HttpStatusCode.Unauthorized)`
`132`	`132`	`{`
`133`	`133`	`if (code == GAM_CODE_OTP_USER_ACCESS_CODE_SENT \|\| code == GAM_CODE_TFA_USER_MUST_VALIDATE)`
`134`	`134`	`{`
`@@ -138,7 +138,7 @@ private static HttpStatusCode GamCodeToHttpStatus(string code)`
`138`	`138`	`{`
`139`	`139`	`return HttpStatusCode.Forbidden;`
`140`	`140`	`}`
`141`		`- return HttpStatusCode.Unauthorized;`
	`141`	`+ return defaultCode;`
`142`	`142`	`}`
`143`	`143`	`private static void SetJsonError(HttpContext httpContext, string statusCode, string statusDescription)`
`144`	`144`	`{`
`@@ -158,9 +158,9 @@ private static void SetJsonError(HttpContext httpContext, string statusCode, str`
`158`	`158`	`}`
`159`	`159`	`#endif`
`160`	`160`	`}`
`161`		`- internal static void SetGamError(HttpContext httpContext, string code, string message)`
	`161`	`+ internal static void SetGamError(HttpContext httpContext, string code, string message, HttpStatusCode defaultCode = HttpStatusCode.Unauthorized)`
`162`	`162`	`{`
`163`		`- SetResponseStatus(httpContext, GamCodeToHttpStatus(code), message);`
	`163`	`+ SetResponseStatus(httpContext, GamCodeToHttpStatus(code, defaultCode), message);`
`164`	`164`	`SetJsonError(httpContext, code, message);`
`165`	`165`	`}`
`166`	`166`	`internal static void TraceUnexpectedError(Exception ex)`
Original file line number	Diff line number	Diff line change
`@@ -509,7 +509,7 @@ public bool IsAuthenticated()`
`509`	`509`	`{`
`510`	`510`	`return IsAuthenticated(Worker.IntegratedSecurityLevel2, Worker.IntegratedSecurityEnabled2, Worker.ExecutePermissionPrefix2);`
`511`	`511`	`}`
`512`		`- private bool IsAuthenticated(GAMSecurityLevel objIntegratedSecurityLevel, bool objIntegratedSecurityEnabled, string objPermissionPrefix)`
	`512`	`+ protected bool IsAuthenticated(GAMSecurityLevel objIntegratedSecurityLevel, bool objIntegratedSecurityEnabled, string objPermissionPrefix)`
`513`	`513`	`{`
`514`	`514`	`if (!objIntegratedSecurityEnabled)`
`515`	`515`	`{`
`@@ -547,16 +547,8 @@ private bool IsAuthenticated(GAMSecurityLevel objIntegratedSecurityLevel, bool o`
`547`	`547`	`}`
`548`	`548`	`else`
`549`	`549`	`{`
`550`		`- HttpHelper.SetGamError(_httpContext, result.Code, result.Description);`
`551`		`- if (sessionOk)`
`552`		`- {`
`553`		`- SetStatusCode(HttpStatusCode.Forbidden);`
`554`		`- }`
`555`		`- else`
`556`		`- {`
`557`		`- AddHeader(HttpHeader.AUTHENTICATE_HEADER, HttpHelper.OatuhUnauthorizedHeader(_gxContext.GetServerName(), result.Code, result.Description));`
`558`		`- SetStatusCode(HttpStatusCode.Unauthorized);`
`559`		`- }`
	`550`	`+ HttpStatusCode defaultStatusCode = sessionOk ? HttpStatusCode.Forbidden : HttpStatusCode.Unauthorized;`
	`551`	`+ HttpHelper.SetGamError(_httpContext, result.Code, result.Description, defaultStatusCode);`
`560`	`552`	`return false;`
`561`	`553`	`}`
`562`	`554`	`}`