OrchardCMS · MikeAlhayek · May 29, 2024 · May 27, 2024 · May 28, 2024 · May 28, 2024
diff --git a/src/OrchardCore.Modules/OrchardCore.Apis.GraphQL/AdminMenu.cs b/src/OrchardCore.Modules/OrchardCore.Apis.GraphQL/AdminMenu.cs
@@ -24,7 +24,7 @@ public Task BuildNavigationAsync(string name, NavigationBuilder builder)
                 .Add(S["Configuration"], configuration => configuration
                     .Add(S["GraphiQL"], S["GraphiQL"].PrefixPosition(), graphiQL => graphiQL
                         .Action("Index", "Admin", "OrchardCore.Apis.GraphQL")
-                        .Permission(Permissions.ExecuteGraphQL)
+                        .Permission(CommonPermissions.ExecuteGraphQL)
                         .LocalNav()
                     )
                 );

diff --git a/src/OrchardCore.Modules/OrchardCore.Apis.GraphQL/GraphQLMiddleware.cs b/src/OrchardCore.Modules/OrchardCore.Apis.GraphQL/GraphQLMiddleware.cs
@@ -64,7 +64,7 @@ public async Task InvokeAsync(HttpContext context, RequestDelegate next)
                     context.User = authenticateResult.Principal;
                 }
                 var authorizationService = context.RequestServices.GetService<IAuthorizationService>();
-                var authorized = await authorizationService.AuthorizeAsync(context.User, Permissions.ExecuteGraphQL);
+                var authorized = await authorizationService.AuthorizeAsync(context.User, CommonPermissions.ExecuteGraphQL);
 
                 if (authorized)
                 {

diff --git a/src/OrchardCore.Modules/OrchardCore.Apis.GraphQL/Permissions.cs b/src/OrchardCore.Modules/OrchardCore.Apis.GraphQL/Permissions.cs
@@ -1,3 +1,4 @@
+using System;
 using System.Collections.Generic;
 using System.Threading.Tasks;
 using OrchardCore.Security.Permissions;
@@ -6,13 +7,17 @@ namespace OrchardCore.Apis.GraphQL;
 
 public class Permissions : IPermissionProvider
 {
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.ExecuteGraphQLMutations'.")]
-    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.ExecuteGraphQLMutations'.")]
+    [Obsolete("This field will be removed in a future release. Instead use 'CommonPermissions.ExecuteGraphQLMutations' from OrchardCore.Apis.GraphQL.Abstractions.")]
-    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.ExecuteGraphQLMutations'.")]
+    [Obsolete("This field will be removed in a future release. Instead use 'CommonPermissions.ExecuteGraphQLMutations' from OrchardCore.Apis.GraphQL.Abstractions.")]
     public static readonly Permission ExecuteGraphQLMutations = CommonPermissions.ExecuteGraphQLMutations;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.ExecuteGraphQL'.")]
     public static readonly Permission ExecuteGraphQL = CommonPermissions.ExecuteGraphQL;
 
     private readonly IEnumerable<Permission> _allPermissions =
     [
-        ExecuteGraphQL,
-        ExecuteGraphQLMutations,
+        CommonPermissions.ExecuteGraphQL,
+        CommonPermissions.ExecuteGraphQLMutations,
     ];
 
     public Task<IEnumerable<Permission>> GetPermissionsAsync()
@@ -25,7 +30,7 @@ public IEnumerable<PermissionStereotype> GetDefaultStereotypes() =>
             Name = OrchardCoreConstants.Roles.Administrator,
             Permissions =
             [
-                ExecuteGraphQLMutations,
+                CommonPermissions.ExecuteGraphQLMutations,
             ],
         },
     ];

diff --git a/...Core.Modules/OrchardCore.Apis.GraphQL/ValidationRules/RequiresPermissionValidationRule.cs b/...Core.Modules/OrchardCore.Apis.GraphQL/ValidationRules/RequiresPermissionValidationRule.cs
@@ -59,7 +59,7 @@ public async ValueTask<INodeVisitor> ValidateAsync(ValidationContext validationC
 
         private async Task AuthorizeOperationAsync(ASTNode node, ValidationContext validationContext, GraphQLUserContext userContext, OperationType? operationType, string operationName)
         {
-            if (operationType == OperationType.Mutation && !(await _authorizationService.AuthorizeAsync(userContext.User, Permissions.ExecuteGraphQLMutations)))
+            if (operationType == OperationType.Mutation && !(await _authorizationService.AuthorizeAsync(userContext.User, CommonPermissions.ExecuteGraphQLMutations)))
             {
                 validationContext.ReportError(new ValidationError(
                     validationContext.Document.Source,

diff --git a/src/OrchardCore.Modules/OrchardCore.AuditTrail/Permissions.cs b/src/OrchardCore.Modules/OrchardCore.AuditTrail/Permissions.cs
@@ -1,3 +1,4 @@
+using System;
 using System.Collections.Generic;
 using System.Threading.Tasks;
 using OrchardCore.Security.Permissions;
@@ -6,13 +7,16 @@ namespace OrchardCore.AuditTrail;
 
 public class Permissions : IPermissionProvider
 {
+    [Obsolete("This property will be removed in future release. Instead use 'AuditTrailPermissions.ViewAuditTrail'.")]
     public static readonly Permission ViewAuditTrail = AuditTrailPermissions.ViewAuditTrail;
+
+    [Obsolete("This property will be removed in future release. Instead use 'AuditTrailPermissions.ManageAuditTrailSettings'.")]
     public static readonly Permission ManageAuditTrailSettings = AuditTrailPermissions.ManageAuditTrailSettings;
 
     private readonly IEnumerable<Permission> _allPermissions =
     [
-        ViewAuditTrail,
-        ManageAuditTrailSettings,
+        AuditTrailPermissions.ViewAuditTrail,
+        AuditTrailPermissions.ManageAuditTrailSettings,
     ];
 
     public Task<IEnumerable<Permission>> GetPermissionsAsync()

diff --git a/src/OrchardCore.Modules/OrchardCore.Contents/AdminMenu.cs b/src/OrchardCore.Modules/OrchardCore.Contents/AdminMenu.cs
@@ -75,7 +75,7 @@ await content.AddAsync(S["Content Items"], S["Content Items"].PrefixPosition(),
                 {
                     if (!await _authorizationService.AuthorizeContentTypeDefinitionsAsync(context.User, CommonPermissions.ListContent, contentTypes, _contentManager))
                     {
-                        contentItems.Permission(Permissions.ListContent);
+                        contentItems.Permission(CommonPermissions.ListContent);
                     }
 
                     contentItems.Action(nameof(AdminController.List), typeof(AdminController).ControllerName(), _routeValues);

diff --git a/src/OrchardCore.Modules/OrchardCore.Contents/Controllers/AdminController.cs b/src/OrchardCore.Modules/OrchardCore.Contents/Controllers/AdminController.cs
@@ -147,7 +147,7 @@ public async Task<IActionResult> List(
                 new SelectListItem(S["All versions"], nameof(ContentsStatus.AllVersions)),
             ];
 
-            if (await IsAuthorizedAsync(Permissions.ListContent))
+            if (await IsAuthorizedAsync(CommonPermissions.ListContent))
             {
                 options.ContentStatuses.Insert(1, new SelectListItem(S["Owned by me"], nameof(ContentsStatus.Owner)));
             }

diff --git a/src/OrchardCore.Modules/OrchardCore.Contents/Permissions.cs b/src/OrchardCore.Modules/OrchardCore.Contents/Permissions.cs
@@ -1,3 +1,4 @@
+using System;
 using System.Collections.Generic;
 using System.Threading.Tasks;
 using OrchardCore.Security.Permissions;
@@ -11,44 +12,72 @@ public class Permissions : IPermissionProvider
 
     // EditOwn is the permission that is ultimately required to create new content. See how the Create() method is implemented in the AdminController.
 
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.PublishContent'.")]
     public static readonly Permission PublishContent = CommonPermissions.PublishContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.PublishOwnContent'.")]
     public static readonly Permission PublishOwnContent = CommonPermissions.PublishOwnContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.EditContent'.")]
     public static readonly Permission EditContent = CommonPermissions.EditContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.EditOwnContent'.")]
     public static readonly Permission EditOwnContent = CommonPermissions.EditOwnContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.DeleteContent'.")]
     public static readonly Permission DeleteContent = CommonPermissions.DeleteContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.DeleteOwnContent'.")]
     public static readonly Permission DeleteOwnContent = CommonPermissions.DeleteOwnContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.ViewContent'.")]
     public static readonly Permission ViewContent = CommonPermissions.ViewContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.ViewOwnContent'.")]
     public static readonly Permission ViewOwnContent = CommonPermissions.ViewOwnContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.PreviewContent'.")]
     public static readonly Permission PreviewContent = CommonPermissions.PreviewContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.PreviewOwnContent'.")]
     public static readonly Permission PreviewOwnContent = CommonPermissions.PreviewOwnContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.CloneContent'.")]
     public static readonly Permission CloneContent = CommonPermissions.CloneContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.CloneOwnContent'.")]
     public static readonly Permission CloneOwnContent = CommonPermissions.CloneOwnContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.ListContent'.")]
     public static readonly Permission ListContent = CommonPermissions.ListContent;
+
+    [Obsolete("This property will be removed in future release. Instead use 'CommonPermissions.EditContentOwner'.")]
     public static readonly Permission EditContentOwner = CommonPermissions.EditContentOwner;
+
     public static readonly Permission AccessContentApi = new("AccessContentApi", "Access content via the api");
 
     private readonly IEnumerable<Permission> _readerPermissions =
     [
-        ViewContent,
+        CommonPermissions.ViewContent,
     ];
 
     private readonly IEnumerable<Permission> _allPermissions =
     [
-        EditContent,
-        EditOwnContent,
-        PublishContent,
-        PublishOwnContent,
-        DeleteContent,
-        DeleteOwnContent,
-        ViewContent,
-        ViewOwnContent,
-        PreviewContent,
-        PreviewOwnContent,
-        CloneContent,
-        CloneOwnContent,
+        CommonPermissions.EditContent,
+        CommonPermissions.EditOwnContent,
+        CommonPermissions.PublishContent,
+        CommonPermissions.PublishOwnContent,
+        CommonPermissions.DeleteContent,
+        CommonPermissions.DeleteOwnContent,
+        CommonPermissions.ViewContent,
+        CommonPermissions.ViewOwnContent,
+        CommonPermissions.PreviewContent,
+        CommonPermissions.PreviewOwnContent,
+        CommonPermissions.CloneContent,
+        CommonPermissions.CloneOwnContent,
         AccessContentApi,
-        ListContent,
-        EditContentOwner,
+        CommonPermissions.ListContent,
+        CommonPermissions.EditContentOwner,
     ];
 
     public Task<IEnumerable<Permission>> GetPermissionsAsync()
@@ -61,49 +90,49 @@ public IEnumerable<PermissionStereotype> GetDefaultStereotypes() =>
             Name = OrchardCoreConstants.Roles.Administrator,
             Permissions =
             [
-                PublishContent,
-                EditContent,
-                DeleteContent,
-                PreviewContent,
-                CloneContent,
+                CommonPermissions.PublishContent,
+                CommonPermissions.EditContent,
+                CommonPermissions.DeleteContent,
+                CommonPermissions.PreviewContent,
+                CommonPermissions.CloneContent,
                 AccessContentApi,
-                ListContent,
-                EditContentOwner,
+                CommonPermissions.ListContent,
+                CommonPermissions.EditContentOwner,
             ],
         },
         new PermissionStereotype
         {
             Name = OrchardCoreConstants.Roles.Editor,
             Permissions =
             [
-                PublishContent,
-                EditContent,
-                DeleteContent,
-                PreviewContent,
-                CloneContent,
-                ListContent,
+                CommonPermissions.PublishContent,
+                CommonPermissions.EditContent,
+                CommonPermissions.DeleteContent,
+                CommonPermissions.PreviewContent,
+                CommonPermissions.CloneContent,
+                CommonPermissions.ListContent,
             ],
         },
         new PermissionStereotype
         {
             Name = OrchardCoreConstants.Roles.Author,
             Permissions =
             [
-                PublishOwnContent,
-                EditOwnContent,
-                DeleteOwnContent,
-                PreviewOwnContent,
-                CloneOwnContent,
+                CommonPermissions.PublishOwnContent,
+                CommonPermissions.EditOwnContent,
+                CommonPermissions.DeleteOwnContent,
+                CommonPermissions.PreviewOwnContent,
+                CommonPermissions.CloneOwnContent,
             ],
         },
         new PermissionStereotype
         {
             Name = OrchardCoreConstants.Roles.Contributor,
             Permissions =
             [
-                EditOwnContent,
-                PreviewOwnContent,
-                CloneOwnContent,
+                CommonPermissions.EditOwnContent,
+                CommonPermissions.PreviewOwnContent,
+                CommonPermissions.CloneOwnContent,
             ],
         },
         new PermissionStereotype

diff --git a/src/OrchardCore.Modules/OrchardCore.Deployment/AdminMenu.cs b/src/OrchardCore.Modules/OrchardCore.Deployment/AdminMenu.cs
@@ -25,17 +25,17 @@ public Task BuildNavigationAsync(string name, NavigationBuilder builder)
                     .Add(S["Import/Export"], S["Import/Export"].PrefixPosition(), import => import
                         .Add(S["Deployment Plans"], S["Deployment Plans"].PrefixPosition(), deployment => deployment
                             .Action("Index", "DeploymentPlan", "OrchardCore.Deployment")
-                            .Permission(Permissions.Export)
+                            .Permission(CommonPermissions.Export)
                             .LocalNav()
                         )
                         .Add(S["Package Import"], S["Package Import"].PrefixPosition(), deployment => deployment
                             .Action("Index", "Import", "OrchardCore.Deployment")
-                            .Permission(Permissions.Import)
+                            .Permission(CommonPermissions.Import)
                             .LocalNav()
                         )
                         .Add(S["JSON Import"], S["JSON Import"].PrefixPosition(), deployment => deployment
                             .Action("Json", "Import", "OrchardCore.Deployment")
-                            .Permission(Permissions.Import)
+                            .Permission(CommonPermissions.Import)
                             .LocalNav()
                         )
                     )

diff --git a/src/OrchardCore.Modules/OrchardCore.Deployment/Controllers/DeploymentPlanController.cs b/src/OrchardCore.Modules/OrchardCore.Deployment/Controllers/DeploymentPlanController.cs
@@ -65,12 +65,12 @@ public DeploymentPlanController(
 
         public async Task<IActionResult> Index(ContentOptions options, PagerParameters pagerParameters)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }
 
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.Export))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.Export))
             {
                 return Forbid();
             }
@@ -129,7 +129,7 @@ public ActionResult IndexFilterPOST(DeploymentPlanIndexViewModel model)
         [FormValueRequired("submit.BulkAction")]
         public async Task<ActionResult> IndexBulkActionPOST(ContentOptions options, IEnumerable<long> itemIds)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }
@@ -158,7 +158,7 @@ public async Task<ActionResult> IndexBulkActionPOST(ContentOptions options, IEnu
 
         public async Task<IActionResult> Display(long id)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }
@@ -199,7 +199,7 @@ public async Task<IActionResult> Display(long id)
 
         public async Task<IActionResult> Create()
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }
@@ -212,7 +212,7 @@ public async Task<IActionResult> Create()
         [HttpPost]
         public async Task<IActionResult> Create(CreateDeploymentPlanViewModel model)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }
@@ -246,7 +246,7 @@ public async Task<IActionResult> Create(CreateDeploymentPlanViewModel model)
 
         public async Task<IActionResult> Edit(long id)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }
@@ -270,7 +270,7 @@ public async Task<IActionResult> Edit(long id)
         [HttpPost]
         public async Task<IActionResult> Edit(EditDeploymentPlanViewModel model)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }
@@ -316,7 +316,7 @@ public async Task<IActionResult> Edit(EditDeploymentPlanViewModel model)
         [HttpPost]
         public async Task<IActionResult> Delete(long id)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.ManageDeploymentPlan))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.ManageDeploymentPlan))
             {
                 return Forbid();
             }

diff --git a/src/OrchardCore.Modules/OrchardCore.Deployment/Controllers/ExportFileController.cs b/src/OrchardCore.Modules/OrchardCore.Deployment/Controllers/ExportFileController.cs
@@ -36,7 +36,7 @@ public ExportFileController(
         [DeleteFileResultFilter]
         public async Task<IActionResult> Execute(long id)
         {
-            if (!await _authorizationService.AuthorizeAsync(User, Permissions.Export))
+            if (!await _authorizationService.AuthorizeAsync(User, CommonPermissions.Export))
             {
                 return Forbid();
             }