堆栈内存溢出
  简体   繁体   English

链接CanExecute命令方法和授权管理

[英]Linking CanExecute method of commands and authorization management

 原文  2014-09-11 14:11:10       c#/ authorization/ icommand

问题描述

I want to manage permissions to execute commands and view controls and so on. 我想管理执行命令和查看控件等的权限。 Therefore I have a class UserAction implementing ICommand interface. 因此,我有一个实现ICommand接口的UserAction类。

I want to define UserActions available for the UserManagement using one Enum. 我想使用一个枚举定义可用于UserManagement的UserAction。

For simplifying UserManagement I want to wrap multiple UserActions to UserActivities which permissions are set in a database table. 为了简化UserManagement,我想将多个UserAction包装到UserActivities中,在数据库表中设置了权限。

On runtime I have a Role class which maintains the currently set of permissions (stored as UserActivities), these permissions are likely to change during runtime. 在运行时,我有一个Role类,该类维护当前的权限集(存储为UserActivities),这些权限在运行时可能会更改。

Does anyone know how to manage this CanExecute methods correctly or are there any nice patterns or frameworks meant for this topic? 有谁知道如何正确地管理CanExecute方法,或者有没有适合该主题的好的模式或框架?

I did not find a lot about this for now on the net. 我目前在网上找不到很多有关此的内容。

1 个解决方案

解决方案1
 1 已采纳  2014-09-16 15:56:16

As a whole what you want to achieve is called externalized authorization management . 总体而言,您要实现的目标称为外部化授权管理 You can consider two different approaches: 您可以考虑两种不同的方法:

  1. Microsoft provides something called claims-based authorization. Microsoft提供了一种称为基于声明的授权。 You can find lots of tutorials on the topic online. 您可以在线找到许多有关该主题的教程。 Here's a great article from 2013 . 这是2013年的精彩文章
  2. You can also fully externalize (and standardize) your authorization by using XACML, the eXtensible Access Control Markup Language which is both an authorization framework as well as a policy language to define your authorization policies. 您还可以使用XACML(可扩展访问控制标记语言,它既是授权框架又是定义您的授权策略的策略语言)来完全外部化(和标准化)您的授权。 Unfortunately .NET doesn't have XACML built-in so you need to add in an external authorization engine (also called policy decision point or PDP). 不幸的是.NET没有内置的XACML,因此您需要添加一个外部授权引擎(也称为策略决策点或PDP)。 There are a couple available from Axiomatics or XEngine (on sourceforge). Axiomatics或XEngine(在sourceforge上)有几个可用的。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 与CanExecute类似的方法,但是用于属性而不是命令? - Similar method to CanExecute but for properties instead of commands? 绑定命令可以执行到IDataErrorInfo - Binding a commands canexecute to IDataErrorInfo mvvm与canexecute和绑定命令混淆 - mvvm confusion with canexecute and binding commands ReactiveUI 命令:如何在静态条件下使用 canexecute - ReactiveUI commands : How to use canexecute with static conditions 在 MVVM 中使用 DelegateCommand 的异步 CanExecute 方法 - Async CanExecute method using DelegateCommand in MVVM WPF按钮被隐藏,但是出现“ CanExecute”方法 - WPF button is hidden but “CanExecute” method rises CanExecute Caliburn方法不适用于嵌套属性 - CanExecute Caliburn method not working with nested properties WPF:如何重新定义ApplicationCommands的CanExecute方法 - WPF: How to redefine CanExecute method of ApplicationCommands 如何使用CanExecute方法启用Button - How to enable a Button with its CanExecute method 如何在 WPF 上使用 ICommand 中的 CanExecute 方法 - How to use the CanExecute Method from ICommand on WPF
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM