-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathAuthorizationPermissionPolicyBuilder.cs
More file actions
49 lines (40 loc) · 1.49 KB
/
AuthorizationPermissionPolicyBuilder.cs
File metadata and controls
49 lines (40 loc) · 1.49 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
using System.Reflection;
using Clinically.Kinde.Authentication.Types;
using Microsoft.AspNetCore.Authorization;
namespace Clinically.Kinde.Authentication;
public static class AuthorizationPermissionsPolicyBuilder
{
public static AuthorizationBuilder AddKindePermissionPolicies<T>(this AuthorizationBuilder builder) where T: class
{
var policyFields = GetPolicyFields<T>();
foreach (var field in policyFields)
{
AddPolicy(builder, field);
}
return builder;
}
public static AuthorizationBuilder AddKindePermissionPolicies(this AuthorizationBuilder builder, List<string> permissions)
{
foreach (var permission in permissions)
{
AddPolicy(builder, permission);
}
return builder;
}
private static IEnumerable<FieldInfo> GetPolicyFields<T>() where T: class
{
var policyType = typeof(T);
return policyType.GetFields(BindingFlags.Public | BindingFlags.Static | BindingFlags.FlattenHierarchy)
.Where(x => x.FieldType == typeof(string));
}
private static void AddPolicy(AuthorizationBuilder builder, FieldInfo field)
{
var permissionName = (string)field.GetValue(null)!;
AddPolicy(builder, permissionName);
}
private static void AddPolicy(AuthorizationBuilder builder, string policyName)
{
builder.AddPolicy(policyName, policy => policy
.RequireClaim(KindeClaimTypes.Permissions, policyName));
}
}