Update RemediatR roles and permissions #52

grantcolley · Jun 8, 2022 · b106e50 · b106e50
1 parent cfe91f7
commit b106e50
Show file tree

Hide file tree

Showing 4 changed files with 82 additions and 61 deletions.
diff --git a/...tR.Core/Constants/RemediatRPermissions.cs → ....Core/Constants/RemediatRAuthorisation.cs b/...tR.Core/Constants/RemediatRPermissions.cs → ....Core/Constants/RemediatRAuthorisation.cs
@@ -1,19 +1,27 @@
 namespace Headway.RemediatR.Core.Constants
 {
-    public static class RemediatRPermissions
+    public static class RemediatRAuthorisation
     {
-        // RemediatR
+        // Permissions
         public const string CUSTOMER_READ = "Customer Read";
         public const string CUSTOMER_WRITE = "Customer Write";
         public const string REDRESS_READ = "Redress Read";
         public const string REDRESS_WRITE = "Redress Write";
         public const string REDRESS_TRANSITION = "Redress Transition";
-        public const string COMMUNICATION_DISPATCH = "Communication Dispatch Transition";
+        public const string COMMUNICATION_DISPATCH_TRANSITION = "Communication Dispatch Transition";
         public const string AWAITING_REPONSE_TRANSITION = "Awaiting Response Transition";
         public const string REDRESS_REVIEW_TRANSITION = "Redress Review Transition";
         public const string REDRESS_COMPLETE = "Redress Complete";
-        public const string REFUND_CACULATION = "Refund Calculation Complete";
+        public const string REFUND_READ = "Refund Read";
+        public const string REFUND_WRITE = "Refund Write";
+        public const string REFUND_CACULATION_COMPLETE = "Refund Calculation Complete";
         public const string REFUND_VERIFICATION_COMPLETE = "Refund Varification Complete";
         public const string REFUND_REVIEW_TRANSITION = "Refund Review Transition";
+
+        // Roles
+        public const string REDRESS_CASE_OWNER = "Redress Case Owner";
+        public const string REDRESS_REVIEWER = "Redress Reviewer";
+        public const string REFUND_ASSESSOR = "Refund Assessor";
+        public const string REFUND_REVIEWER = "Refund Reviewer";
     }
 }
diff --git a/src/Headway.WebApi/Controllers/RemediatRCustomerController.cs b/src/Headway.WebApi/Controllers/RemediatRCustomerController.cs
@@ -24,7 +24,7 @@ public RemediatRCustomerController(
         [HttpGet]
         public async Task<IActionResult> Get()
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.CUSTOMER_READ)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.CUSTOMER_READ)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -42,7 +42,7 @@ public async Task<IActionResult> Get()
         [HttpGet("{customerId}")]
         public async Task<IActionResult> Get(int customerId)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.CUSTOMER_READ)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.CUSTOMER_READ)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -60,7 +60,7 @@ public async Task<IActionResult> Get(int customerId)
         [HttpPost]
         public async Task<IActionResult> Post([FromBody] Customer customer)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.CUSTOMER_WRITE)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.CUSTOMER_WRITE)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -78,7 +78,7 @@ public async Task<IActionResult> Post([FromBody] Customer customer)
         [HttpPut]
         public async Task<IActionResult> Put([FromBody] Customer customer)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.CUSTOMER_WRITE)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.CUSTOMER_WRITE)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -96,7 +96,7 @@ public async Task<IActionResult> Put([FromBody] Customer customer)
         [HttpDelete("{customerId}")]
         public async Task<IActionResult> Delete(int customerId)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.CUSTOMER_WRITE)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.CUSTOMER_WRITE)
                 .ConfigureAwait(false);
 
             if (!authorised)

diff --git a/src/Headway.WebApi/Controllers/RemediatRRedressController.cs b/src/Headway.WebApi/Controllers/RemediatRRedressController.cs
@@ -24,7 +24,7 @@ public RemediatRRedressController(
         [HttpGet]
         public async Task<IActionResult> Get()
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.REDRESS_READ)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.REDRESS_READ)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -42,7 +42,7 @@ public async Task<IActionResult> Get()
         [HttpGet("{redressId}")]
         public async Task<IActionResult> Get(int redressId)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.REDRESS_READ)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.REDRESS_READ)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -60,7 +60,7 @@ public async Task<IActionResult> Get(int redressId)
         [HttpPost]
         public async Task<IActionResult> Post([FromBody] Redress redress)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.REDRESS_WRITE)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.REDRESS_WRITE)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -78,7 +78,7 @@ public async Task<IActionResult> Post([FromBody] Redress redress)
         [HttpPut]
         public async Task<IActionResult> Put([FromBody] Redress redress)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.REDRESS_WRITE)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.REDRESS_WRITE)
                 .ConfigureAwait(false);
 
             if (!authorised)
@@ -96,7 +96,7 @@ public async Task<IActionResult> Put([FromBody] Redress redress)
         [HttpDelete("{redressId}")]
         public async Task<IActionResult> Delete(int redressId)
         {
-            var authorised = await IsAuthorisedAsync(RemediatRPermissions.REDRESS_WRITE)
+            var authorised = await IsAuthorisedAsync(RemediatRAuthorisation.REDRESS_WRITE)
                 .ConfigureAwait(false);
 
             if (!authorised)

diff --git a/src/Utilities/Headway.SeedData/RemediatRData.cs b/src/Utilities/Headway.SeedData/RemediatRData.cs
@@ -1,4 +1,5 @@
 using Headway.Core.Model;
+using Headway.RemediatR.Core.Constants;
 using Headway.Repository.Data;
 using Microsoft.EntityFrameworkCore;
 using System.Collections.Generic;
@@ -19,9 +20,9 @@ public static void Initialise(ApplicationDbContext applicationDbContext)
 
             TruncateTables();
 
-            Permissions();
-            Roles();
-            Users();
+            CreatePermissions();
+            CreateRoles();
+            CreateUsers();
             AssignUsersRoles();
         }
 
@@ -34,21 +35,26 @@ private static void TruncateTables()
             //((DbContext)dbContext).Database.ExecuteSqlRaw("DBCC CHECKIDENT (Users, RESEED, 1)");
         }
 
-        private static void Permissions()
+        private static void CreatePermissions()
         {
-            permissions.Add("Customer Read", new Permission { Name = "Customer Read", Description = "RemediatR Customer Read" });
-            permissions.Add("Customer Write", new Permission { Name = "Customer Write", Description = "RemediatR Customer Write" });
-            permissions.Add("Redress Read", new Permission { Name = "Redress Read", Description = "RemediatR Redress Read" });
-            permissions.Add("Redress Write", new Permission { Name = "Redress Write", Description = "RemediatR Redress Write" });
-            permissions.Add("Redress Transition", new Permission { Name = "Redress Transition", Description = "RemediatR Redress Transition" });
-            permissions.Add("Communication Dispatch Transition", new Permission { Name = "Communication Dispatch Transition", Description = "RemediatR Communication Dispatch Transition" });
-            permissions.Add("Awaiting Response Transition", new Permission { Name = "Awaiting Response Transition", Description = "RemediatR Awaiting Response Transition" });
-            permissions.Add("Redress Review Transition", new Permission { Name = "Redress Review Transition", Description = "RemediatR Redress Refund Review Transition" });
-            permissions.Add("Redress Complete", new Permission { Name = "Redress Complete", Description = "RemediatR Redress Complete" });
-            permissions.Add("Refund Calculation Complete", new Permission { Name = "Refund Calculation Complete", Description = "RemediatR Refund Calculation Complete" });
-            permissions.Add("Refund Varification Complete", new Permission { Name = "Refund Varification Complete", Description = "RemediatR Refund Varification Complete" });
-            permissions.Add("Refund Review Transition", new Permission { Name = "Refund Review Transition", Description = "RemediatR Refund Review Transition" });
-            permissions.Add("Admin", new Permission { Name = "Admin", Description = "RemediatR Administrator" });
+            permissions.Add(RemediatRAuthorisation.CUSTOMER_READ, new Permission { Name = RemediatRAuthorisation.CUSTOMER_READ, Description = "RemediatR Customer Read" });
+            permissions.Add(RemediatRAuthorisation.CUSTOMER_WRITE, new Permission { Name = RemediatRAuthorisation.CUSTOMER_WRITE, Description = "RemediatR Customer Write" });
+
+            permissions.Add(RemediatRAuthorisation.REDRESS_READ, new Permission { Name = RemediatRAuthorisation.REDRESS_READ, Description = "RemediatR Redress Read" });
+            permissions.Add(RemediatRAuthorisation.REDRESS_WRITE, new Permission { Name = RemediatRAuthorisation.REDRESS_WRITE, Description = "RemediatR Redress Write" });
+            permissions.Add(RemediatRAuthorisation.REDRESS_TRANSITION, new Permission { Name = RemediatRAuthorisation.REDRESS_TRANSITION, Description = "RemediatR Redress Transition" });
+            permissions.Add(RemediatRAuthorisation.COMMUNICATION_DISPATCH_TRANSITION, new Permission { Name = RemediatRAuthorisation.COMMUNICATION_DISPATCH_TRANSITION, Description = "RemediatR Communication Dispatch Transition" });
+            permissions.Add(RemediatRAuthorisation.AWAITING_REPONSE_TRANSITION, new Permission { Name = RemediatRAuthorisation.AWAITING_REPONSE_TRANSITION, Description = "RemediatR Awaiting Response Transition" });
+
+            permissions.Add(RemediatRAuthorisation.REDRESS_REVIEW_TRANSITION, new Permission { Name = RemediatRAuthorisation.REDRESS_REVIEW_TRANSITION, Description = "RemediatR Redress Refund Review Transition" });
+            permissions.Add(RemediatRAuthorisation.REDRESS_COMPLETE, new Permission { Name = RemediatRAuthorisation.REDRESS_COMPLETE, Description = "RemediatR Redress Complete" });
+
+            permissions.Add(RemediatRAuthorisation.REFUND_READ, new Permission { Name = RemediatRAuthorisation.REFUND_READ, Description = "RemediatR Refund Read" });
+            permissions.Add(RemediatRAuthorisation.REFUND_WRITE, new Permission { Name = RemediatRAuthorisation.REFUND_WRITE, Description = "RemediatR Refund Write" });
+            permissions.Add(RemediatRAuthorisation.REFUND_CACULATION_COMPLETE, new Permission { Name = RemediatRAuthorisation.REFUND_CACULATION_COMPLETE, Description = "RemediatR Refund Calculation Complete" });
+            permissions.Add(RemediatRAuthorisation.REFUND_VERIFICATION_COMPLETE, new Permission { Name = RemediatRAuthorisation.REFUND_VERIFICATION_COMPLETE, Description = "RemediatR Refund Varification Complete" });
+
+            permissions.Add(RemediatRAuthorisation.REFUND_REVIEW_TRANSITION, new Permission { Name = RemediatRAuthorisation.REFUND_REVIEW_TRANSITION, Description = "RemediatR Refund Review Transition" });
 
             foreach(var permission in permissions.Values)
             {
@@ -58,44 +64,52 @@ private static void Permissions()
             dbContext.SaveChanges();
         }
 
-        private static void Roles()
+        private static void CreateRoles()
         {
-            roles.Add("Redress Case Owner", new Role { Name = "Redress Case Owner", Description = "RemediatR Redress Case Owner" });
-            roles.Add("Redress Reviewer", new Role { Name = "Redress Reviewer", Description = "RemediatR Redress Reviewer" });
-            roles.Add("Refund Assessor", new Role { Name = "Refund Assessor", Description = "RemediatR Refund Assessor" });
-            roles.Add("Refund Reviewer", new Role { Name = "Refund Reviewer", Description = "RemediatR Refund Reviewer" });
-            roles.Add("Admin", new Role { Name = "Admin", Description = "RemediatR Administrator" });
+            roles.Add(RemediatRAuthorisation.REDRESS_CASE_OWNER, new Role { Name = RemediatRAuthorisation.REDRESS_CASE_OWNER, Description = "RemediatR Redress Case Owner" });
+            roles.Add(RemediatRAuthorisation.REDRESS_REVIEWER, new Role { Name = RemediatRAuthorisation.REDRESS_REVIEWER, Description = "RemediatR Redress Reviewer" });
+            roles.Add(RemediatRAuthorisation.REFUND_ASSESSOR, new Role { Name = RemediatRAuthorisation.REFUND_ASSESSOR, Description = "RemediatR Refund Assessor" });
+            roles.Add(RemediatRAuthorisation.REFUND_REVIEWER, new Role { Name = RemediatRAuthorisation.REFUND_REVIEWER, Description = "RemediatR Refund Reviewer" });
 
             foreach (var role in roles.Values)
             {
                 dbContext.Roles.Add(role);
             }
 
-            roles["Redress Case Owner"].Permissions.Add(permissions["Customer Read"]);
-            roles["Redress Case Owner"].Permissions.Add(permissions["Customer Write"]);
-            roles["Redress Case Owner"].Permissions.Add(permissions["Redress Read"]);
-            roles["Redress Case Owner"].Permissions.Add(permissions["Redress Write"]);
-            roles["Redress Case Owner"].Permissions.Add(permissions["Redress Transition"]);
-            roles["Redress Case Owner"].Permissions.Add(permissions["Communication Dispatch Transition"]);
-            roles["Redress Case Owner"].Permissions.Add(permissions["Awaiting Response Transition"]);
-            roles["Redress Reviewer"].Permissions.Add(permissions["Customer Read"]);
-            roles["Redress Reviewer"].Permissions.Add(permissions["Redress Review Transition"]);
-            roles["Redress Reviewer"].Permissions.Add(permissions["Redress Complete"]);
-            roles["Refund Assessor"].Permissions.Add(permissions["Refund Calculation Complete"]);
-            roles["Refund Assessor"].Permissions.Add(permissions["Refund Varification Complete"]);
-            roles["Refund Reviewer"].Permissions.Add(permissions["Refund Review Transition"]);
-            roles["Admin"].Permissions.Add(permissions["Admin"]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.CUSTOMER_READ]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.CUSTOMER_WRITE]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_READ]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_WRITE]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_TRANSITION]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_READ]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.COMMUNICATION_DISPATCH_TRANSITION]);
+            roles[RemediatRAuthorisation.REDRESS_CASE_OWNER].Permissions.Add(permissions[RemediatRAuthorisation.AWAITING_REPONSE_TRANSITION]);
+
+            roles[RemediatRAuthorisation.REDRESS_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.CUSTOMER_READ]);
+            roles[RemediatRAuthorisation.REDRESS_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_READ]);
+            roles[RemediatRAuthorisation.REDRESS_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_READ]);
+            roles[RemediatRAuthorisation.REDRESS_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_REVIEW_TRANSITION]);
+            roles[RemediatRAuthorisation.REDRESS_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_COMPLETE]);
+
+            roles[RemediatRAuthorisation.REFUND_ASSESSOR].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_READ]);
+            roles[RemediatRAuthorisation.REFUND_ASSESSOR].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_WRITE]);
+            roles[RemediatRAuthorisation.REFUND_ASSESSOR].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_READ]);
+            roles[RemediatRAuthorisation.REFUND_ASSESSOR].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_CACULATION_COMPLETE]);
+            roles[RemediatRAuthorisation.REFUND_ASSESSOR].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_VERIFICATION_COMPLETE]);
+
+            roles[RemediatRAuthorisation.REFUND_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_READ]);
+            roles[RemediatRAuthorisation.REFUND_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.REDRESS_READ]);
+            roles[RemediatRAuthorisation.REFUND_REVIEWER].Permissions.Add(permissions[RemediatRAuthorisation.REFUND_REVIEW_TRANSITION]);
 
             dbContext.SaveChanges();
         }
 
-        private static void Users()
+        private static void CreateUsers()
         {
+            users.Add("grace", new User { UserName = "grace", Email = "[email protected]" });
+            users.Add("mel", new User { UserName = "mel", Email = "[email protected]" });
             users.Add("bill", new User { UserName = "bill", Email = "[email protected]" });
-            users.Add("jane", new User { UserName = "jane", Email = "[email protected]" });
             users.Add("will", new User { UserName = "will", Email = "[email protected]" });
-            users.Add("mel", new User { UserName = "mel", Email = "[email protected]" });
-            users.Add("grace", new User { UserName = "grace", Email = "[email protected]" });
             users.Add("mary", new User { UserName = "mary", Email = "[email protected]" });
 
             foreach (var user in users.Values)
@@ -108,12 +122,11 @@ private static void Users()
 
         private static void AssignUsersRoles()
         {
-            users["grace"].Roles.Add(roles["Redress Case Owner"]);
-            users["mel"].Roles.Add(roles["Redress Reviewer"]);
-            users["jane"].Roles.Add(roles["Refund Assessor"]);
-            users["will"].Roles.Add(roles["Refund Assessor"]);
-            users["mary"].Roles.Add(roles["Refund Reviewer"]);
-            users["bill"].Roles.Add(roles["Admin"]);
+            users["grace"].Roles.Add(roles[RemediatRAuthorisation.REDRESS_CASE_OWNER]);
+            users["mel"].Roles.Add(roles[RemediatRAuthorisation.REDRESS_REVIEWER]);
+            users["bill"].Roles.Add(roles[RemediatRAuthorisation.REFUND_ASSESSOR]);
+            users["will"].Roles.Add(roles[RemediatRAuthorisation.REFUND_ASSESSOR]);
+            users["mary"].Roles.Add(roles[RemediatRAuthorisation.REFUND_REVIEWER]);
 
             dbContext.SaveChanges();
         }