LoginNotAllowed_WorkHour
This commit is contained in:
Sedat ÖZTÜRK
parent
5e772272dc
commit
8c8ee2a72a
8 changed files with 81 additions and 6 deletions
|
|
@ -54,6 +54,10 @@ public static class PlatformSignInResultExtensions
|
|||
{
|
||||
return PlatformConsts.UserCannotSignInErrors.LoginNotAllowed_TenantIsPassive;
|
||||
}
|
||||
if (resultP.IsNotAllowed_WorkHour)
|
||||
{
|
||||
return PlatformConsts.UserCannotSignInErrors.LoginNotAllowed_WorkHour;
|
||||
}
|
||||
}
|
||||
/// Added -->
|
||||
|
||||
|
|
|
|||
|
|
@ -3102,6 +3102,12 @@
|
|||
"en": "It's time to change your password periodically.",
|
||||
"tr": "Parolanızın periyodik olarak değiştirme zamanı gelmiştir."
|
||||
},
|
||||
{
|
||||
"resourceName": "Platform",
|
||||
"key": "Abp.Identity.LoginNotAllowed_WorkHour",
|
||||
"en": "You cannot sign in outside of the allowed work hours.",
|
||||
"tr": "İzin verilen iş saatleri dışında giriş yapamazsınız."
|
||||
},
|
||||
{
|
||||
"resourceName": "Platform",
|
||||
"key": "Abp.Identity.IpRestrictionError",
|
||||
|
|
|
|||
|
|
@ -105,6 +105,7 @@ public static class PlatformConsts
|
|||
public const string IpRestrictionError = GroupName + ".IpRestrictionError";
|
||||
public const string LoginEndDateError = GroupName + ".LoginEndDateError";
|
||||
public const string TenantIsPassive = GroupName + ".TenantIsPassive";
|
||||
public const string LoginNotAllowed_WorkHour = GroupName + ".LoginNotAllowed_WorkHour";
|
||||
public const string CaptchaWrongCode = GroupName + ".CaptchaWrongCode";
|
||||
public const string TwoFactorWrongCode = GroupName + ".TwoFactorWrongCode";
|
||||
public const string SignOut = GroupName + ".SignOut";
|
||||
|
|
@ -423,6 +424,7 @@ public static class PlatformConsts
|
|||
public static string ShouldChangePasswordPeriodic { get; set; } = "UserCannotSignInShouldChangePasswordPeriodic";
|
||||
public static string LoginNotAllowed_TenantIsPassive { get; set; } = "UserCannotSignInTenantIsPassive";
|
||||
public static string LoginNotAllowed_TenantNotFound { get; set; } = "UserCannotSignInTenantNotFound";
|
||||
public static string LoginNotAllowed_WorkHour { get; set; } = "UserCannotSignInWorkHour";
|
||||
}
|
||||
|
||||
public static class GridOptions
|
||||
|
|
|
|||
|
|
@ -22,12 +22,14 @@ public class PlatformSignInResult : SignInResult
|
|||
/// <value>True if login end date is due, otherwise false.</value>
|
||||
public bool IsNotAllowed_LoginEndDateDue { get; set; }
|
||||
|
||||
public bool IsNotAllowed_TenantIsPassive { get; set; }
|
||||
|
||||
public bool ShouldChangePasswordOnNextLogin { get; set; }
|
||||
|
||||
public bool ShouldChangePasswordPeriodic { get; set; }
|
||||
|
||||
public bool IsNotAllowed_TenantIsPassive { get; set; }
|
||||
|
||||
public bool IsNotAllowed_WorkHour { get; set; }
|
||||
|
||||
public override string ToString()
|
||||
{
|
||||
return
|
||||
|
|
@ -37,6 +39,7 @@ public class PlatformSignInResult : SignInResult
|
|||
ShouldChangePasswordOnNextLogin ? "ShouldChangePasswordOnNextLogin" :
|
||||
ShouldChangePasswordPeriodic ? "ShouldChangePasswordPeriodic" :
|
||||
IsNotAllowed_TenantIsPassive ? "NotAllowed_TenantIsPassive" :
|
||||
IsNotAllowed_WorkHour ? "NotAllowed_WorkHour" :
|
||||
base.ToString();
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -21,6 +21,9 @@ public static class PlatformEventIds
|
|||
|
||||
public static EventId UserCannotSignInTenantIsPassive =
|
||||
new(17, PlatformConsts.UserCannotSignInErrors.LoginNotAllowed_TenantIsPassive);
|
||||
|
||||
public static EventId UserCannotSignInWorkHour =
|
||||
new(18, PlatformConsts.UserCannotSignInErrors.LoginNotAllowed_WorkHour);
|
||||
}
|
||||
|
||||
|
||||
|
|
|
|||
|
|
@ -59,6 +59,11 @@ public class PlatformLoginResult : AbpLoginResult
|
|||
PResult = PlatformLoginResultType.TenantIsPassive;
|
||||
Description = L[PlatformConsts.AbpIdentity.User.TenantIsPassive];
|
||||
}
|
||||
else if (resultP.IsNotAllowed_WorkHour)
|
||||
{
|
||||
PResult = PlatformLoginResultType.NotAllowedWorkHour;
|
||||
Description = L[PlatformConsts.AbpIdentity.User.LoginNotAllowed_WorkHour];
|
||||
}
|
||||
}
|
||||
else
|
||||
{
|
||||
|
|
|
|||
|
|
@ -15,5 +15,6 @@ public enum PlatformLoginResultType : byte
|
|||
LoginEndDateDue,
|
||||
ShowCaptcha,
|
||||
TenantIsPassive,
|
||||
NotAllowedWorkHour
|
||||
}
|
||||
|
||||
|
|
|
|||
|
|
@ -30,6 +30,7 @@ public class PlatformSignInManager : AbpSignInManager, IPlatformSignInManager
|
|||
{
|
||||
private readonly IClock clock;
|
||||
private readonly IRepository<IpRestriction, Guid> repositoryIp;
|
||||
private readonly IRepository<WorkHour, Guid> repositoryWorkHour;
|
||||
private readonly ITenantRepository tenantRepository;
|
||||
private readonly IdentityUserManager userManager;
|
||||
|
||||
|
|
@ -45,6 +46,7 @@ public class PlatformSignInManager : AbpSignInManager, IPlatformSignInManager
|
|||
ISettingProvider settingProvider,
|
||||
IClock clock,
|
||||
IRepository<IpRestriction, Guid> repositoryIp,
|
||||
IRepository<WorkHour, Guid> repositoryWorkHour,
|
||||
ITenantRepository tenantRepository
|
||||
) : base(
|
||||
userManager,
|
||||
|
|
@ -59,6 +61,7 @@ public class PlatformSignInManager : AbpSignInManager, IPlatformSignInManager
|
|||
{
|
||||
this.clock = clock;
|
||||
this.repositoryIp = repositoryIp;
|
||||
this.repositoryWorkHour = repositoryWorkHour;
|
||||
this.tenantRepository = tenantRepository;
|
||||
this.userManager = userManager;
|
||||
}
|
||||
|
|
@ -87,10 +90,14 @@ public class PlatformSignInManager : AbpSignInManager, IPlatformSignInManager
|
|||
{
|
||||
return new PlatformSignInResult() { IsNotAllowed_NotAllowedIp = true };
|
||||
}
|
||||
if (!await IsTenantActiveAsync(user))
|
||||
if (!await CanSignInTenantActiveAsync(user))
|
||||
{
|
||||
return new PlatformSignInResult() { IsNotAllowed_TenantIsPassive = true };
|
||||
}
|
||||
if (!await CanSignInWorkHourAsync())
|
||||
{
|
||||
return new PlatformSignInResult() { IsNotAllowed_WorkHour = true };
|
||||
}
|
||||
}
|
||||
else
|
||||
{
|
||||
|
|
@ -109,10 +116,54 @@ public class PlatformSignInManager : AbpSignInManager, IPlatformSignInManager
|
|||
return result;
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// Used to prevent login outside of defined work hours.
|
||||
/// </summary>
|
||||
private async Task<bool> CanSignInWorkHourAsync()
|
||||
{
|
||||
var workHours = await repositoryWorkHour.GetListAsync();
|
||||
|
||||
if (workHours.IsNullOrEmpty())
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
var now = clock.Now;
|
||||
var currentTime = now.TimeOfDay;
|
||||
var dayOfWeek = now.DayOfWeek;
|
||||
|
||||
var isAllowed = workHours.Any(wh =>
|
||||
{
|
||||
var dayMatches = dayOfWeek switch
|
||||
{
|
||||
DayOfWeek.Monday => wh.Monday == true,
|
||||
DayOfWeek.Tuesday => wh.Tuesday == true,
|
||||
DayOfWeek.Wednesday => wh.Wednesday == true,
|
||||
DayOfWeek.Thursday => wh.Thursday == true,
|
||||
DayOfWeek.Friday => wh.Friday == true,
|
||||
DayOfWeek.Saturday => wh.Saturday == true,
|
||||
DayOfWeek.Sunday => wh.Sunday == true,
|
||||
_ => false
|
||||
};
|
||||
|
||||
if (!dayMatches) return false;
|
||||
|
||||
return currentTime >= wh.StartTime.TimeOfDay && currentTime <= wh.EndTime.TimeOfDay;
|
||||
});
|
||||
|
||||
if (!isAllowed)
|
||||
{
|
||||
Logger.LogWarning(PlatformEventIds.UserCannotSignInWorkHour, "User cannot sign in outside work hours.");
|
||||
return false;
|
||||
}
|
||||
|
||||
return true;
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// Tenant IsActive
|
||||
/// </summary>
|
||||
private async Task<bool> IsTenantActiveAsync(IdentityUser user)
|
||||
private async Task<bool> CanSignInTenantActiveAsync(IdentityUser user)
|
||||
{
|
||||
if (!user.TenantId.HasValue)
|
||||
{
|
||||
|
|
|
|||
Loading…
Reference in a new issue