#region Copyright // /************************************************************************ // Copyright (c) 2016 Jamie Rees // File: HtmlSecurityHelper.cs // Created By: Jamie Rees // // Permission is hereby granted, free of charge, to any person obtaining // a copy of this software and associated documentation files (the // "Software"), to deal in the Software without restriction, including // without limitation the rights to use, copy, modify, merge, publish, // distribute, sublicense, and/or sell copies of the Software, and to // permit persons to whom the Software is furnished to do so, subject to // the following conditions: // // The above copyright notice and this permission notice shall be // included in all copies or substantial portions of the Software. // // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. // ************************************************************************/ #endregion using Nancy.Security; using Nancy.ViewEngines.Razor; using Ninject; using PlexRequests.Helpers.Permissions; using PlexRequests.Store.Repository; namespace PlexRequests.UI.Helpers { public static class HtmlSecurityHelper { private static SecurityExtensions Security { get { var userRepo = ServiceLocator.Instance.Resolve(); return _security ?? (_security = new SecurityExtensions(userRepo, null)); } } private static SecurityExtensions _security; public static bool HasAnyPermission(this HtmlHelpers helper, int permission) { return helper.CurrentUser.IsAuthenticated() && Security.HasPermissions(helper.CurrentUser, (Permissions) permission); } public static bool DoesNotHavePermission(this HtmlHelpers helper, int permission) { return Security.DoesNotHavePermissions(permission, helper.CurrentUser); } } }