hrms-bangkok/hrms-api-recruit
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

permission สรรหา

Browse source
This commit is contained in:
Bright 2024-08-20 11:28:47 +07:00
parent 6f60af960f
commit 1b9bc7dc97
3 changed files with 114 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

53
Controllers/RecruitController.cs
View file

@ -12,6 +12,8 @@ using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc; using Microsoft.AspNetCore.Mvc;
using Microsoft.EntityFrameworkCore; using Microsoft.EntityFrameworkCore;
using MySqlConnector; using MySqlConnector;
using Newtonsoft.Json;
using Newtonsoft.Json.Linq;
using OfficeOpenXml; using OfficeOpenXml;
using Org.BouncyCastle.Ocsp; using Org.BouncyCastle.Ocsp;
using Sentry; using Sentry;
@ -39,7 +41,7 @@ namespace BMA.EHR.Recruit.Service.Controllers
private readonly MinIOService _minioService; private readonly MinIOService _minioService;
private readonly IWebHostEnvironment _webHostEnvironment; private readonly IWebHostEnvironment _webHostEnvironment;
private readonly RecruitService _recruitService; private readonly RecruitService _recruitService;
private readonly PermissionRepository _permission;
private readonly IHttpContextAccessor _httpContextAccessor; private readonly IHttpContextAccessor _httpContextAccessor;
private readonly ILogger<RecruitController> _logger; private readonly ILogger<RecruitController> _logger;
@ -53,7 +55,8 @@ namespace BMA.EHR.Recruit.Service.Controllers
IWebHostEnvironment webHostEnvironment, IWebHostEnvironment webHostEnvironment,
RecruitService recruitService, RecruitService recruitService,
IHttpContextAccessor httpContextAccessor, IHttpContextAccessor httpContextAccessor,
ILogger<RecruitController> logger) ILogger<RecruitController> logger,
PermissionRepository permission)
{ {
_context = context; _context = context;
_contextMetadata = contextMetadata; _contextMetadata = contextMetadata;
@ -62,6 +65,7 @@ namespace BMA.EHR.Recruit.Service.Controllers
_recruitService = recruitService; _recruitService = recruitService;
_httpContextAccessor = httpContextAccessor; _httpContextAccessor = httpContextAccessor;
_logger = logger; _logger = logger;
_permission = permission;
} }
#endregion #endregion
@ -440,6 +444,15 @@ namespace BMA.EHR.Recruit.Service.Controllers
{ {
try try
{ {
var action = "CREATE";
var system = "SYS_EXAM_SELECT";
var getPermission = await _permission.GetPermissionAPIAsync(action, system);
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var attrPrivilege = jsonData["result"]?.ToString();
if (req == null) if (req == null)
return Error(GlobalMessages.InvalidRequestParam, (int)HttpStatusCode.BadRequest); return Error(GlobalMessages.InvalidRequestParam, (int)HttpStatusCode.BadRequest);
@ -494,6 +507,15 @@ namespace BMA.EHR.Recruit.Service.Controllers
{ {
try try
{ {
var action = "UPDATE";
var system = "SYS_EXAM_SELECT";
var getPermission = await _permission.GetPermissionAPIAsync(action, system);
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var attrPrivilege = jsonData["result"]?.ToString();
var data = await _context.RecruitImports.AsQueryable().FirstOrDefaultAsync(x => x.Id == id); var data = await _context.RecruitImports.AsQueryable().FirstOrDefaultAsync(x => x.Id == id);
if (data == null) if (data == null)
@ -894,6 +916,15 @@ namespace BMA.EHR.Recruit.Service.Controllers
{ {
try try
{ {
var action = "DELETE";
var system = "SYS_EXAM_SELECT";
var getPermission = await _permission.GetPermissionAPIAsync(action, system);
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var attrPrivilege = jsonData["result"]?.ToString();
var data = await _context.RecruitImports.AsQueryable() var data = await _context.RecruitImports.AsQueryable()
.Include(x => x.ImportHostories) .Include(x => x.ImportHostories)
.Include(x => x.ImportFile) .Include(x => x.ImportFile)
@ -989,6 +1020,15 @@ namespace BMA.EHR.Recruit.Service.Controllers
[ProducesResponseType(StatusCodes.Status500InternalServerError)] [ProducesResponseType(StatusCodes.Status500InternalServerError)]
public async Task<ActionResult<ResponseObject>> ImportCandidateFileByIdAsync(Guid id) public async Task<ActionResult<ResponseObject>> ImportCandidateFileByIdAsync(Guid id)
{ {
var action = "CREATE";
var system = "SYS_EXAM_SELECT";
var getPermission = await _permission.GetPermissionAPIAsync(action, system);
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var attrPrivilege = jsonData["result"]?.ToString();
var tmpDir = Path.Combine(_webHostEnvironment.ContentRootPath, "tmp"); var tmpDir = Path.Combine(_webHostEnvironment.ContentRootPath, "tmp");
if (!Directory.Exists(tmpDir)) if (!Directory.Exists(tmpDir))
Directory.CreateDirectory(tmpDir); Directory.CreateDirectory(tmpDir);
@ -1196,6 +1236,15 @@ namespace BMA.EHR.Recruit.Service.Controllers
[HttpPost("score/{id:length(36)}"), DisableRequestSizeLimit] [HttpPost("score/{id:length(36)}"), DisableRequestSizeLimit]
public async Task<ActionResult<ResponseObject>> ImportScoreFileAsync(Guid id) public async Task<ActionResult<ResponseObject>> ImportScoreFileAsync(Guid id)
{ {
var action = "CREATE";
var system = "SYS_EXAM_SELECT";
var getPermission = await _permission.GetPermissionAPIAsync(action, system);
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var attrPrivilege = jsonData["result"]?.ToString();
var tmpDir = Path.Combine(_webHostEnvironment.ContentRootPath, "tmp"); var tmpDir = Path.Combine(_webHostEnvironment.ContentRootPath, "tmp");
if (!Directory.Exists(tmpDir)) if (!Directory.Exists(tmpDir))
Directory.CreateDirectory(tmpDir); Directory.CreateDirectory(tmpDir);

1
Program.cs
View file

@ -64,6 +64,7 @@ builder.Services.AddAuthorization();
// Register Services // Register Services
builder.Services.AddTransient<RecruitService>(); builder.Services.AddTransient<RecruitService>();
builder.Services.AddTransient<MinIOService>(); builder.Services.AddTransient<MinIOService>();
builder.Services.AddTransient<PermissionRepository>();
// use serilog // use serilog
ConfigureLogs(); ConfigureLogs();

62
Repositories/PermissionRepository.cs Normal file
View file

@ -0,0 +1,62 @@
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.EntityFrameworkCore;
using BMA.EHR.Recruit.Service.Data;
using BMA.EHR.Recruit.Service.Models.Recruits;
using BMA.EHR.Recruit.Service.Core;
using BMA.EHR.MetaData.Service.Models;
using BMA.EHR.Domain.Models.Placement;
using BMA.EHR.Recurit.Service.Data;
using System.Security.Claims;
using System.Net.Http.Headers;
using Newtonsoft.Json;
namespace BMA.EHR.Recruit.Service.Services
{
public class PermissionRepository
{
private readonly IHttpContextAccessor _httpContextAccessor;
private readonly IConfiguration _configuration;
public PermissionRepository(IHttpContextAccessor httpContextAccessor,
IConfiguration configuration)
{
_httpContextAccessor = httpContextAccessor;
_configuration = configuration;
}
#region " Properties "
private string? AccessToken => _httpContextAccessor?.HttpContext?.Request.Headers["Authorization"];
#endregion
#region " Methods "
public async Task<dynamic> GetPermissionAPIAsync(string action, string system)
{
try
{
var apiPath = $"{_configuration["API"]}/org/permission/dotnet/{action}/{system}";
using (var client = new HttpClient())
{
client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", AccessToken.Replace("Bearer ", ""));
client.DefaultRequestHeaders.Add("api_key", _configuration["API_KEY"]);
var req = await client.GetAsync(apiPath);
var res = await req.Content.ReadAsStringAsync();
return res;
}
}
catch
{
throw;
}
}
#endregion
}
}