Admin access check - Permissions not enforced in ng2 admin controls

preciofishbone / Omnia-Foundation

Omnia Foundation is a platform and a framework that increases productivity when building solutions for O365 and SharePoint on-premise.

http://www.preciofishbone.se

1 stars 0 forks source link

Admin access check - Permissions not enforced in ng2 admin controls #75

Closed PetterT2 closed 7 years ago

PetterT2 commented 7 years ago

Trying to navigate to a known route for ng1 control on which user does not have permissions, gives error. Trying to navigate to a known route for ng2 control on which user does not have permissions, gives no error/access denied.

See attachments admin_access_ng1 admin_access_ng2

tuannla07 commented 7 years ago

@PetterT2 Thanks for your feedback, to make admin control enforced permission you should make your class extend from OmniaAdminPermissionBase import { AdminAuthorizationService, OmniaAdminPermissionBase } from "@Omnia/Foundation/Extensibility";

constructor( @Inject(AdminAuthorizationService) public authorizationService: AdminAuthorizationService) { super(authorizationService, authorizedRoles); if (this._isAuthorized) //TODO }