Granular permission back end done

FJPSite/Program.cs

@@ -1,4 +1,11 @@
 using FJPSite.Data;
+using FJPSite.Data.Identity;
+using FJPSite.Enums;
+using FJPSite.Factories;
+using FJPSite.Factories.EntitySeeders;
+using FJPSite.Helpers;
+using FJPSite.Interfaces;
+using FJPSite.Services;
 using Microsoft.AspNetCore.Identity;
 using Microsoft.EntityFrameworkCore;
 
@@ -10,10 +17,27 @@ builder.Services.AddDbContext<ApplicationDbContext>(options =>
     options.UseSqlServer(connectionString));
 builder.Services.AddDatabaseDeveloperPageExceptionFilter();
 
-builder.Services.AddDefaultIdentity<IdentityUser>(options => options.SignIn.RequireConfirmedAccount = true)
-    .AddEntityFrameworkStores<ApplicationDbContext>();
+builder.Services.AddDefaultIdentity<UserEntity>(options => options.SignIn.RequireConfirmedAccount = true)
+    .AddRoles<RoleEntity>()
+    .AddEntityFrameworkStores<ApplicationDbContext>()
+    .AddClaimsPrincipalFactory<UserClaimFactory>();
 builder.Services.AddControllersWithViews();
 
+builder.Services.AddTransient<UserClaimsPrincipalFactory<UserEntity, RoleEntity>, UserClaimFactory>();
+builder.Services.AddScoped<IPermissionService, PermissionService>();
+builder.Services.AddAuthorization(options =>
+{
+    foreach (FeatureEnum feature in Enum.GetValues(typeof(FeatureEnum)))
+    {
+        foreach (ActionEnum action in Enum.GetValues(typeof(ActionEnum)))
+        {
+            string policyName = $"Permission.{feature}.{action}";
+            options.AddPolicy(policyName, policy =>
+            policy.Requirements.Add(new PermissionRequirement(feature, action)));
+        }
+    }
+});
+
 var app = builder.Build();
 
 // Configure the HTTP request pipeline.
@@ -35,6 +59,10 @@ app.UseAuthorization();
 
 app.MapStaticAssets();
 
+app.MapControllerRoute(
+    name: "Admin",
+    pattern: "{area:exists}/{controller=Home}/{action=Index}/{id?}");
+
 app.MapControllerRoute(
     name: "default",
     pattern: "{controller=Home}/{action=Index}/{id?}")