feat: permissions

Author: hamed-shirbandi

src/1-Libraries/Application/Helpers/Permissions.cs

@@ -0,0 +1,63 @@
+// Copyright (c) CodeBlock.Dev. All rights reserved.
+// For more information visit https://codeblock.dev
+
+using System.Reflection;
+using CodeBlock.DevKit.Contracts.Models;
+
+namespace CanBeYours.Application.Helpers;
+
+/// <summary>
+/// This class contains all permissions used in the application.
+/// They will be automatically registered in the database.
+/// </summary>
+public static class Permissions
+{
+    /// <summary>
+    /// This class name is used as a group name for permissions related to demo things.
+    /// </summary>
+    public static class Demo
+    {
+        /// <summary>
+        /// This property represents the permission to manage demo things.
+        /// </summary>
+        public const string DEMO_THINGS = "DemoThings";
+    }
+
+    /// <summary>
+    /// Retrieves all permissions dynamically using reflection.
+    /// </summary>
+    public static IEnumerable<PermissionsSettings> GetPermissions()
+    {
+        var permissionsList = new List<PermissionsSettings>();
+
+        // Get all nested classes (categories)
+        var categories = typeof(Permissions).GetNestedTypes(BindingFlags.Public | BindingFlags.Static);
+
+        foreach (var category in categories)
+        {
+            // Get all public constants (permissions) inside the category
+            var permissions = category
+                .GetFields(BindingFlags.Public | BindingFlags.Static | BindingFlags.FlattenHierarchy)
+                .Where(f => f.IsLiteral && !f.IsInitOnly) // Ensure they are constants
+                .Select(f => new
+                {
+                    SystemName = f.GetRawConstantValue()?.ToString(), // Property value
+                    DisplayName = f.GetRawConstantValue()?.ToString(),
+                })
+                .Where(p => p.DisplayName != null)
+                .ToList();
+
+            // Add extracted permissions to the list
+            permissionsList.AddRange(
+                permissions.Select(permission => new PermissionsSettings
+                {
+                    SystemName = permission.SystemName,
+                    DisplayName = permission.DisplayName,
+                    GroupName = category.Name,
+                })
+            );
+        }
+
+        return permissionsList;
+    }
+}

src/1-Libraries/Application/UseCases/DemoThings/GetDemoThing/GetDemoThingUseCase.cs

@@ -1,8 +1,10 @@
 using AutoMapper;
 using CanBeYours.Application.Dtos;
 using CanBeYours.Application.Exceptions;
+using CanBeYours.Application.Helpers;
 using CanBeYours.Core.Domain.DemoThings;
 using CodeBlock.DevKit.Application.Queries;
+using CodeBlock.DevKit.Application.Srvices;
 using MediatR;
 using Microsoft.Extensions.Logging;
 
@@ -11,11 +13,18 @@ namespace CanBeYours.Application.UseCases.DemoThings.GetDemoThing;
 internal class GetDemoThingUseCase : BaseQueryHandler, IRequestHandler<GetDemoThingRequest, GetDemoThingDto>
 {
     private readonly IDemoThingRepository _demoThingRepository;
+    private readonly ICurrentUser _currentUser;
 
-    public GetDemoThingUseCase(IDemoThingRepository demoThingRepository, IMapper mapper, ILogger<GetDemoThingUseCase> logger)
+    public GetDemoThingUseCase(
+        IDemoThingRepository demoThingRepository,
+        IMapper mapper,
+        ILogger<GetDemoThingUseCase> logger,
+        ICurrentUser currentUser
+    )
         : base(mapper, logger)
     {
         _demoThingRepository = demoThingRepository;
+        _currentUser = currentUser;
     }
 
     public async Task<GetDemoThingDto> Handle(GetDemoThingRequest request, CancellationToken cancellationToken)
@@ -24,6 +33,8 @@ public async Task<GetDemoThingDto> Handle(GetDemoThingRequest request, Cancellat
         if (demoThing == null)
             throw DemoThingApplicationExceptions.DemoThingNotFound(request.Id);
 
+        EnsureUserHasAccess(demoThing.UserId, _currentUser, Permissions.Demo.DEMO_THINGS);
+
         return _mapper.Map<GetDemoThingDto>(demoThing);
     }
 }

…tructure/DbContext/SettingsDbMigrator.cs …s/Infrastructure/DbContext/DbMigrator.cssrc/1-Libraries/Infrastructure/DbContext/SettingsDbMigrator.cs renamed to src/1-Libraries/Infrastructure/DbContext/DbMigrator.cs src/1-Libraries/Infrastructure/DbContext/SettingsDbMigrator.cs renamed to src/1-Libraries/Infrastructure/DbContext/DbMigrator.cs

@@ -4,7 +4,7 @@
 
 namespace CanBeYours.Infrastructure.DbContext;
 
-internal static class DemoThingsDbMigrator
+internal static class DbMigrator
 {
     public static void MigrateDatabes(this IServiceProvider serviceProvider)
     {

…astructure/DbContext/SettingsDbSeeder.cs …ies/Infrastructure/DbContext/DbSeeder.cssrc/1-Libraries/Infrastructure/DbContext/SettingsDbSeeder.cs renamed to src/1-Libraries/Infrastructure/DbContext/DbSeeder.cs src/1-Libraries/Infrastructure/DbContext/SettingsDbSeeder.cs renamed to src/1-Libraries/Infrastructure/DbContext/DbSeeder.cs

@@ -1,21 +1,35 @@
+using CanBeYours.Application.Helpers;
 using CanBeYours.Core.Domain.DemoThings;
+using CodeBlock.DevKit.Administration.Domain.Permissions;
 using CodeBlock.DevKit.Identity.Domain.Users;
 using Microsoft.Extensions.DependencyInjection;
 using MongoDB.Driver;
 
 namespace CanBeYours.Infrastructure.DbContext;
 
-internal static class DemoThingsDbSeeder
+internal static class DbSeeder
 {
-    public static void SeedSampleDemoThings(this IServiceProvider serviceProvider)
+    public static void SeedPermissions(this IServiceProvider serviceProvider)
     {
         using var serviceScope = serviceProvider.CreateScope();
+        var permissionRepository = serviceScope.ServiceProvider.GetService<IPermissionRepository>();
+
+        var permissions = permissionRepository.GetListAsync().GetAwaiter().GetResult();
+
+        foreach (var permission in Permissions.GetPermissions())
+        {
+            // Check if the permission already exists
+            if (permissions.Any(p => p.SystemName == permission.SystemName))
+                continue;
 
-        serviceScope.SeedDemoThings();
+            var newPermission = Permission.Create(permissionRepository, permission.DisplayName, permission.SystemName, permission.GroupName);
+            permissionRepository.Add(newPermission);
+        }
     }
 
-    private static void SeedDemoThings(this IServiceScope serviceScope)
+    public static void SeedSampleDemoThings(this IServiceProvider serviceProvider)
     {
+        using var serviceScope = serviceProvider.CreateScope();
         var dbContext = serviceScope.ServiceProvider.GetService<MainDbContext>();
 
         if (dbContext.DemoThings.Find(_ => true).Any())

src/1-Libraries/Infrastructure/Startup.cs

@@ -22,9 +22,13 @@ public static void AddInfrastructureModule(this IServiceCollection services)
         services.AddValidatorsFromAssembly(typeof(Startup).Assembly);
     }
 
-    public static void UseInfrastructureModule(this IServiceProvider serviceProvider)
+    public static void UseInfrastructureModule(this IServiceProvider serviceProvider, bool isDevelopmentEnvironment)
     {
-        serviceProvider.SeedSampleDemoThings();
+        serviceProvider.MigrateDatabes();
+        serviceProvider.SeedPermissions();
+
+        if (isDevelopmentEnvironment)
+            serviceProvider.SeedSampleDemoThings();
     }
 
     private static void AddMongoDbContext(this IServiceCollection services)

src/2-Clients/AdminPanel/Startup.cs

@@ -16,7 +16,7 @@ public static WebApplication ConfigureServices(this WebApplicationBuilder builde
     public static WebApplication ConfigurePipeline(this WebApplication app)
     {
         app.UseAdminPanelClientModule();
-        app.Services.UseInfrastructureModule();
+        app.Services.UseInfrastructureModule(app.Environment.IsDevelopment());
 
         return app;
     }

src/2-Clients/AdminPanel/appsettings.json

@@ -11,14 +11,7 @@
     "DatabaseName": "CanBeYours"
   },
   "Administration": {
-    "AdminRole": "admin",
-    "Permissions": [
-      {
-        "DisplayName": "Demo Things",
-        "SystemName": "DemoThings",
-        "GroupName": "Demo"
-      }
-    ]
+    "AdminRole": "admin"
   },
   "Identity": {
     "AdminUser": {

src/2-Clients/Api/Startup.cs

@@ -16,7 +16,7 @@ public static WebApplication ConfigureServices(this WebApplicationBuilder builde
     public static WebApplication ConfigurePipeline(this WebApplication app)
     {
         app.UseApiClientModule();
-        app.Services.UseInfrastructureModule();
+        app.Services.UseInfrastructureModule(app.Environment.IsDevelopment());
 
         return app;
     }

src/2-Clients/Api/appsettings.json

@@ -12,14 +12,7 @@
     "DatabaseName": "CanBeYours"
   },
   "Administration": {
-    "AdminRole": "admin",
-    "Permissions": [
-      {
-        "DisplayName": "Demo Things",
-        "SystemName": "DemoThings",
-        "GroupName": "Demo"
-      }
-    ]
+    "AdminRole": "admin"
   },
   "Identity": {
     "AdminUser": {

src/2-Clients/WebApp/Startup.cs

@@ -16,7 +16,7 @@ public static WebApplication ConfigureServices(this WebApplicationBuilder builde
     public static WebApplication ConfigurePipeline(this WebApplication app)
     {
         app.UseWebAppClientModule();
-        app.Services.UseInfrastructureModule();
+        app.Services.UseInfrastructureModule(app.Environment.IsDevelopment());
         return app;
     }
 }