Netcore: Introduce BackofficeSecurityAccessor (#8871)

* Introduced IWebSecurityAccessor Signed-off-by: Bjarke Berg <mail@bergmania.dk> * Fixed tests Signed-off-by: Bjarke Berg <mail@bergmania.dk> * Renamed WebSecurity to BackofficeSecurity and all related names * Fixes typos Co-authored-by: Elitsa Marinovska <elm@umbraco.dk>
2020-09-22 10:01:00 +02:00
parent 525ca95acf
commit 96facc4d35
84 changed files with 571 additions and 404 deletions
--- a/src/Umbraco.Infrastructure/Models/Mapping/MemberTabsAndPropertiesMapper.cs
+++ b/src/Umbraco.Infrastructure/Models/Mapping/MemberTabsAndPropertiesMapper.cs
@@ -10,6 +10,10 @@ using Umbraco.Core.Models;
 using Umbraco.Core.PropertyEditors;
 using Umbraco.Core.Services;
 using Umbraco.Web.Models.ContentEditing;
+using Umbraco.Core.Dictionary;
+using Umbraco.Core.Configuration;
+using Umbraco.Core.PropertyEditors;
+using Umbraco.Core.Security;
 using Umbraco.Web.Security;

 namespace Umbraco.Web.Models.Mapping
@@ -24,7 +28,7 @@ namespace Umbraco.Web.Models.Mapping
    /// </remarks>
    public class MemberTabsAndPropertiesMapper : TabsAndPropertiesMapper<IMember>
    {
-        private readonly IWebSecurity _webSecurity;
+        private readonly IBackofficeSecurityAccessor _backofficeSecurityAccessor;
        private readonly ILocalizedTextService _localizedTextService;
        private readonly IMemberTypeService _memberTypeService;
        private readonly IMemberService _memberService;
@@ -33,7 +37,7 @@ namespace Umbraco.Web.Models.Mapping
        private readonly PropertyEditorCollection _propertyEditorCollection;

        public MemberTabsAndPropertiesMapper(ICultureDictionary cultureDictionary,
-            IWebSecurity webSecurity,
+            IBackofficeSecurityAccessor backofficeSecurityAccessor,
            ILocalizedTextService localizedTextService,
            IMemberTypeService memberTypeService,
            IMemberService memberService,
@@ -43,7 +47,7 @@ namespace Umbraco.Web.Models.Mapping
            PropertyEditorCollection propertyEditorCollection)
            : base(cultureDictionary, localizedTextService, contentTypeBaseServiceProvider)
        {
-            _webSecurity = webSecurity ?? throw new ArgumentNullException(nameof(webSecurity));
+            _backofficeSecurityAccessor = backofficeSecurityAccessor ?? throw new ArgumentNullException(nameof(backofficeSecurityAccessor));
            _localizedTextService = localizedTextService ?? throw new ArgumentNullException(nameof(localizedTextService));
            _memberTypeService = memberTypeService ?? throw new ArgumentNullException(nameof(memberTypeService));
            _memberService = memberService ?? throw new ArgumentNullException(nameof(memberService));
@@ -76,8 +80,8 @@ namespace Umbraco.Web.Models.Mapping
                isLockedOutProperty.Value = _localizedTextService.Localize("general/no");
            }

-            if (_webSecurity.CurrentUser != null
-                && _webSecurity.CurrentUser.AllowedSections.Any(x => x.Equals(Constants.Applications.Settings)))
+            if (_backofficeSecurityAccessor.BackofficeSecurity.CurrentUser != null
+                && _backofficeSecurityAccessor.BackofficeSecurity.CurrentUser.AllowedSections.Any(x => x.Equals(Constants.Applications.Settings)))
            {
                var memberTypeLink = string.Format("#/member/memberTypes/edit/{0}", source.ContentTypeId);

@@ -191,7 +195,7 @@ namespace Umbraco.Web.Models.Mapping
                // check if this property is flagged as sensitive
                var isSensitiveProperty = memberType.IsSensitiveProperty(prop.Alias);
                // check permissions for viewing sensitive data
-                if (isSensitiveProperty && (_webSecurity.CurrentUser.HasAccessToSensitiveData() == false))
+                if (isSensitiveProperty && (_backofficeSecurityAccessor.BackofficeSecurity.CurrentUser.HasAccessToSensitiveData() == false))
                {
                    // mark this property as sensitive
                    prop.IsSensitive = true;