Making Roles Multi-Tenant

So far, we have made users page work in multi-tenant style. Seems like we did too many changes to make it work. But remember that we are trying to turn a system that is not designed to be multi-tenant into such one.

Let’s apply similar principles to the Roles table.

Again, a user in one tenant shouldn’t see or modify roles in other tenants and work in isolation.

We start by adding TenantId property to RoleRow.cs:

  1. namespace MultiTenancy.Administration.Entities
  2. {
  3.     //...
  4.     public sealed class RoleRow : Row, IIdRow, INameRow
  5.     {
  6.         [Insertable(false), Updatable(false)]
  7.         public Int32? TenantId
  8.         {
  9.             get { return Fields.TenantId[this]; }
  10.             set { Fields.TenantId[this] = value; }
  11.         }
  13.         //...
  15.         public class RowFields : RowFieldsBase
  16.         {
  17.             //...
  18.             public Int32Field TenantId;
  19.             //...
  20.         }
  21.     }
  22. }

Then we’ll do several changes in RoleRepository.cs:

  1. private class MySaveHandler : SaveRequestHandler<MyRow>
  2. {
  3.     protected override void SetInternalFields()
  4.     {
  5.         base.SetInternalFields();
  7.         if (IsCreate)
  8.             Row.TenantId = ((UserDefinition)Authorization.UserDefinition).TenantId;
  9.     }
  11.      protected override void ValidateRequest()
  12.      {
  13.          base.ValidateRequest();
  15.          if (IsUpdate)
  16.          {
  17.              var user = (UserDefinition)Authorization.UserDefinition;
  18.              if (Old.TenantId != user.TenantId)
  19.                  Authorization.ValidatePermission(PermissionKeys.Tenants);
  20.          }
  21.      }
  22. }
  24. private class MyDeleteHandler : DeleteRequestHandler<MyRow>
  25. {
  26.     protected override void ValidateRequest()
  27.     {
  28.         base.ValidateRequest();
  30.         var user = (UserDefinition)Authorization.UserDefinition;
  31.         if (Row.TenantId != user.TenantId)
  32.             Authorization.ValidatePermission(PermissionKeys.Tenants);
  33.     }
  34. }
  36. private class MyRetrieveHandler : RetrieveRequestHandler<MyRow>
  37. {
  38.     protected override void PrepareQuery(SqlQuery query)
  39.     {
  40.         base.PrepareQuery(query);
  42.         var user = (UserDefinition)Authorization.UserDefinition;
  43.         if (!Authorization.HasPermission(PermissionKeys.Tenants))
  44.             query.Where(fld.TenantId == user.TenantId);
  45.     }
  46. }
  48. private class MyListHandler : ListRequestHandler<MyRow>
  49. {
  50.     protected override void ApplyFilters(SqlQuery query)
  51.     {
  52.         base.ApplyFilters(query);
  54.         var user = (UserDefinition)Authorization.UserDefinition;
  55.         if (!Authorization.HasPermission(PermissionKeys.Tenants))
  56.             query.Where(fld.TenantId == user.TenantId);
  57.     }
  58. }