现在,我使用“venderextension”属性解决了这个问题。
我创建了一个“swaggergroups”-属性:
[AttributeUsage(AttributeTargets.Method)]
public class SwaggerGroupsAttribute : Attribute
{
public SwaggerGroupsAttribute(params string[] groups)
{
this.Groups = groups;
}
public IEnumerable<string> Groups{ get; }
}
以及一个操作过滤器,用于读取属性并将列表添加到
供应商延伸
:
public class GroupPermission: IOperationFilter
{
public void Apply(Operation operation, SchemaRegistry schemaRegistry, ApiDescription apiDescription)
{
var attributes = apiDescription.GetControllerAndActionAttributes<SwaggerGroupsAttribute>().SingleOrDefault();
if (attributes == null) return;
if(operation.vendorExtensions == null) operation.vendorExtensions = new Dictionary<string, object>();
var permissionList = new List<string>();
foreach(var permission in attributes.Permissions)
{
permissionList.Add(permission);
}
operation.vendorExtensions.Add("someKey", permissionList);
}
}
通过此设置,我可以定义以下允许的角色:
[SwaggerGroups("Administrator")]
public IHttpActionResult Index(){
...
}