我正在编写IdentityRoleManager的扩展,以允许多租户角色。在不同的租户中,角色可能是同名的,他们可以将自己的主张分配给角色。
如何在表中允许重复的角色名称?我打算通过Rolemanager实施的每个租户的角色名称将是唯一的。
尝试了fluentapi的杂模,但没有像ef6
那样给物体传递的对象。builder.entity((。totable(" penroles"( 。
如何做?
更改角色fluent api config:
public class RoleConfiguration : IEntityTypeConfiguration<Role>
{
public void Configure(EntityTypeBuilder<Role> builder)
{
builder.Metadata.RemoveIndex(new[] { builder.Property(r => r.NormalizedName).Metadata });
builder.HasIndex(r => new { r.NormalizedName, r.ApplicationId }).HasName("RoleNameIndex").IsUnique();
}
}
然后覆盖角色评估器:
public class MyRoleValidator : RoleValidator<Role>
{
public override async Task<IdentityResult> ValidateAsync(RoleManager<Role> manager, Role role)
{
var roleName = await manager.GetRoleNameAsync(role);
if (string.IsNullOrWhiteSpace(roleName))
{
return IdentityResult.Failed(new IdentityError
{
Code = "RoleNameIsNotValid",
Description = "Role Name is not valid!"
});
}
else
{
var owner = await manager.Roles.FirstOrDefaultAsync(x => x.ApplicationId == role.ApplicationId && x.NormalizedName == roleName);
if (owner != null && !string.Equals(manager.GetRoleIdAsync(owner), manager.GetRoleIdAsync(role)))
{
return IdentityResult.Failed(new IdentityError
{
Code = "DuplicateRoleName",
Description = "this role already exist in this App!"
});
}
}
return IdentityResult.Success;
}
}
然后注册到DI容器,然后在启动文件中更改ASP Net Identity Config使用此类:
public static IServiceCollection ConfigureIdentity(this IServiceCollection services, IConfiguration configuration)
{
services.AddScoped<IRoleValidator<Role>, MyRoleValidator>(); //this line...
services.AddIdentity<ApplicationUser, Role>(options =>
{
options.Password.RequiredLength = configuration.GetSection(nameof(IdentitySettings)).Get<IdentitySettings>().PasswordRequiredLength;
options.Password.RequireLowercase = configuration.GetSection(nameof(IdentitySettings)).Get<IdentitySettings>().PasswordRequireLowercase;
options.Password.RequireUppercase = configuration.GetSection(nameof(IdentitySettings)).Get<IdentitySettings>().PasswordRequireUppercase;
options.Password.RequireNonAlphanumeric = configuration.GetSection(nameof(IdentitySettings)).Get<IdentitySettings>().PasswordRequireNonAlphanumeric;
options.Password.RequireDigit = configuration.GetSection(nameof(IdentitySettings)).Get<IdentitySettings>().PasswordRequireDigit;
})
.AddRoleValidator<MyRoleValidator>() //this line ...
.AddEntityFrameworkStores<SepidIdentityContext>()
.AddDefaultTokenProviders();
return services;
}