完善授权与认证模块

Yi.Framework.Net6/src/framework/Yi.Framework.Auth.JwtBearer/Authorization/DefaultPermissionHandler.cs

@@ -11,7 +11,13 @@ namespace Yi.Framework.Auth.JwtBearer.Authorization
     {
         public bool IsPass(string permission, ICurrentUser currentUser)
         {
-            return true;
+            if (currentUser.Permission is not null)
+            {
+               return currentUser.Permission.Contains(permission);
+
+            }
+
+            return false;
         }
     }
 }

Yi.Framework.Net6/src/framework/Yi.Framework.Auth.JwtBearer/Authorization/PermissionAttribute.cs

@@ -39,7 +39,7 @@ namespace Yi.Framework.Auth.JwtBearer.Authorization
 
             if (!result)
             {
-                throw new AuthException(message: "您无权限访问该接口");
+                throw new AuthException(message: $"您无权限访问该接口-{ context.HttpContext.Request.Path.Value}");
             }
         }
 

Yi.Framework.Net6/src/framework/Yi.Framework.Auth.JwtBearer/YiFrameworkAuthJwtBearerModule.cs

@@ -32,10 +32,10 @@ namespace Yi.Framework.Auth.JwtBearer
             {
                 option.AddScheme<YiJwtAuthenticationHandler>(YiJwtAuthenticationHandler.YiJwtSchemeName, YiJwtAuthenticationHandler.YiJwtSchemeName);
             });
-            services.AddSingleton<PermissionAttribute>(_=>new PermissionAttribute(string.Empty));
-            services.AddControllers(options => {
-                options.Filters.Add<PermissionAttribute>();
-            });
+            services.AddSingleton<PermissionAttribute>();
+            //services.AddControllers(options => {
+            //    options.Filters.Add<PermissionAttribute>();
+            //});
         }
     }
 }