DNN-8867: improving folder permission caching.

DNN Platform/Library/Common/Utilities/DataCache.cs

@@ -31,6 +31,7 @@
 using DotNetNuke.Entities.Portals;
 using DotNetNuke.Entities.Tabs;
 using DotNetNuke.Instrumentation;
+using DotNetNuke.Security.Permissions;
 using DotNetNuke.Services.Cache;
 using DotNetNuke.Services.Exceptions;
 using DotNetNuke.Services.Log.EventLog;
@@ -190,7 +191,8 @@ public class DataCache
         public const int FolderMappingCacheTimeOut = 20;
         public const CacheItemPriority FolderMappingCachePriority = CacheItemPriority.High;
 
-        public const string FolderPermissionCacheKey = "FolderPermissions{0}";
+        public const string FolderPermissionCacheKey = "FolderPermissions{0}"; // parent cache dependency key
+        public const string FolderPathPermissionCacheKey = "FolderPathPermissions|{0}|{1}";
         public const CacheItemPriority FolderPermissionCachePriority = CacheItemPriority.Normal;
         public const int FolderPermissionCacheTimeOut = 20;
 
@@ -461,7 +463,8 @@ public static void ClearDesktopModulePermissionsCache()
 
         public static void ClearFolderPermissionsCache(int PortalId)
         {
-            RemoveCache(string.Format(FolderPermissionCacheKey, PortalId));
+            PermissionProvider.ResetCacheDependency(PortalId,
+                () => RemoveCache(string.Format(FolderPermissionCacheKey, PortalId)));
         }
 
         public static void ClearListsCache(int PortalId)

DNN Platform/Library/Data/DataProvider.cs

@@ -1986,7 +1986,12 @@ public virtual IDataReader GetFolderPermissionsByPortal(int portalId)
 			return ExecuteReader("GetFolderPermissionsByPortal", GetNull(portalId));
 		}
 
-		public virtual void UpdateFolderPermission(int FolderPermissionID, int FolderID, int PermissionID, int roleID,
+        public virtual IDataReader GetFolderPermissionsByPortalAndPath(int portalId, string pathName)
+        {
+            return ExecuteReader("GetFolderPermissionsByPortalAndPath", GetNull(portalId), GetNull(pathName) ?? "");
+        }
+
+        public virtual void UpdateFolderPermission(int FolderPermissionID, int FolderID, int PermissionID, int roleID,
 												   bool AllowAccess, int UserID, int lastModifiedByUserID)
 		{
 			ExecuteNonQuery("UpdateFolderPermission",
@@ -1999,11 +2004,11 @@ public virtual void UpdateFolderPermission(int FolderPermissionID, int FolderID,
 									  lastModifiedByUserID);
 		}
 
-		#endregion
+        #endregion
 
-		#region DesktopModulePermission Methods
+        #region DesktopModulePermission Methods
 
-		public virtual int AddDesktopModulePermission(int portalDesktopModuleID, int permissionID, int roleID,
+        public virtual int AddDesktopModulePermission(int portalDesktopModuleID, int permissionID, int roleID,
 											bool allowAccess, int userID, int createdByUserID)
 		{
 			return ExecuteScalar<int>("AddDesktopModulePermission",

DNN Platform/Library/Security/Permissions/PermissionProvider.cs

@@ -24,8 +24,7 @@
 using System.Collections;
 using System.Collections.Generic;
 using System.Data;
-using System.Globalization;
-using System.Web.Services.Description;
+using DotNetNuke.Collections.Internal;
 using DotNetNuke.Common.Utilities;
 using DotNetNuke.ComponentModel;
 using DotNetNuke.Data;
@@ -34,6 +33,7 @@
 using DotNetNuke.Entities.Tabs;
 using DotNetNuke.Entities.Users;
 using DotNetNuke.Security.Roles;
+using DotNetNuke.Services.Cache;
 using DotNetNuke.Services.Exceptions;
 using DotNetNuke.Services.FileSystem;
 using DotNetNuke.Services.Localization;
@@ -96,10 +96,50 @@ public static PermissionProvider Instance()
             return ComponentFactory.GetComponent<PermissionProvider>();
         }
 
+        private static SharedDictionary<int, DNNCacheDependency> _cacheDependencyDict = new SharedDictionary<int, DNNCacheDependency>();
+
+        private static DNNCacheDependency GetCacheDependency(int portalId)
+        {
+            DNNCacheDependency dependency;
+
+            // ReSharper disable once InconsistentlySynchronizedField
+            if (!_cacheDependencyDict.TryGetValue(portalId, out dependency))
+            {
+                lock (_cacheDependencyDict.GetWriteLock())
+                {
+                    if (!_cacheDependencyDict.TryGetValue(portalId, out dependency))
+                    {
+                        var startAt = DateTime.UtcNow;
+                        var cacheKey = string.Format(DataCache.FolderPermissionCacheKey, portalId);
+                        DataCache.SetCache(cacheKey, portalId); // no expiration set for this
+                        _cacheDependencyDict[portalId] =
+                            dependency = new DNNCacheDependency(null, new[] { cacheKey }, startAt);
+                    }
+                }
+            }
+            return dependency;
+        }
+
+        internal static void ResetCacheDependency(int portalId, Action cacehClearAction)
+        {
+            lock (_cacheDependencyDict.GetWriteLock())
+            {
+                // first execute the cache clear action then check the dependency change
+                cacehClearAction.Invoke();
+                DNNCacheDependency dependency;
+                if (_cacheDependencyDict.TryGetValue(portalId, out dependency))
+                {
+                    _cacheDependencyDict.Remove(portalId);
+                    dependency.Dispose();
+                }
+            }
+        }
+
         #endregion
 
         #region Private Methods
 
+#if false
         private object GetFolderPermissionsCallBack(CacheItemArgs cacheItemArgs)
         {
             var PortalID = (int)cacheItemArgs.ParamList[0];
@@ -153,6 +193,7 @@ private Dictionary<string, FolderPermissionCollection> GetFolderPermissions(int
                 CBO.GetCachedObject<Dictionary<string, FolderPermissionCollection>>(
                     new CacheItemArgs(cacheKey, DataCache.FolderPermissionCacheTimeOut, DataCache.FolderPermissionCachePriority, PortalID), GetFolderPermissionsCallBack);
         }
+#endif
 
         /// -----------------------------------------------------------------------------
         /// <summary>
@@ -423,7 +464,7 @@ private IEnumerable<RoleInfo> DefaultImplicitRoles(int portalId)
             };
         } 
 
-        #endregion
+#endregion
 
         #region Protected Methods
 
@@ -540,6 +581,7 @@ public virtual void DeleteFolderPermissionsByUser(UserInfo objUser)
 
         public virtual FolderPermissionCollection GetFolderPermissionsCollectionByFolder(int PortalID, string Folder)
         {
+#if fale
             string dictionaryKey = Folder;
             if (string.IsNullOrEmpty(dictionaryKey))
             {
@@ -557,6 +599,34 @@ public virtual FolderPermissionCollection GetFolderPermissionsCollectionByFolder
                 folderPermissions = new FolderPermissionCollection();
             }
             return folderPermissions;
+#else
+            var cacheKey = string.Format(DataCache.FolderPathPermissionCacheKey, PortalID, Folder);
+            return CBO.GetCachedObject<FolderPermissionCollection>(
+                new CacheItemArgs(cacheKey, DataCache.FolderPermissionCacheTimeOut, DataCache.FolderPermissionCachePriority)
+                {
+                    CacheDependency = GetCacheDependency(PortalID)
+                },
+                _ =>
+                {
+                    var collection = new FolderPermissionCollection();
+                    try
+                    {
+                        using (var dr = dataProvider.GetFolderPermissionsByPortalAndPath(PortalID, Folder))
+                        {
+                            while (dr.Read())
+                            {
+                                var folderPermissionInfo = CBO.FillObject<FolderPermissionInfo>(dr, false);
+                                collection.Add(folderPermissionInfo);
+                            }
+                        }
+                    }
+                    catch (Exception exc)
+                    {
+                        Exceptions.LogException(exc);
+                    }
+                    return collection;
+                });
+#endif
         }
 
         public virtual bool HasFolderPermission(FolderPermissionCollection objFolderPermissions, string PermissionKey)
@@ -828,11 +898,7 @@ public virtual bool HasModuleAccess(SecurityAccessLevel accessLevel, string perm
                             else
                             {
                                 // Need to check if it was denied at Tab level
-                                if (IsDeniedTabPermission(tab, "CONTENT,EDIT"))
-                                {
-                                    isAuthorized = false;
-                                }
-                                else
+                                if (!IsDeniedTabPermission(tab, "CONTENT,EDIT"))
                                 {
                                     isAuthorized = HasModulePermission(moduleConfiguration, permissionKey);
                                 }

DNN Platform/Library/Services/Cache/CachingProvider.cs

@@ -34,6 +34,7 @@
 using DotNetNuke.Entities.Portals;
 using DotNetNuke.Entities.Tabs;
 using DotNetNuke.Instrumentation;
+using DotNetNuke.Security.Permissions;
 using DotNetNuke.Services.Localization;
 
 #endregion
@@ -209,8 +210,9 @@ private void ClearFolderCacheInternal(int portalId, bool clearRuntime)
             // here so we remove them using a prefix
             var folderUserCachePrefix = GetCacheKey(string.Format("Folders|{0}|", portalId));
             ClearCacheInternal(folderUserCachePrefix, clearRuntime);
-
-            RemoveFormattedCacheKey(DataCache.FolderPermissionCacheKey, clearRuntime, portalId);
+
+            PermissionProvider.ResetCacheDependency(portalId,
+                () => RemoveFormattedCacheKey(DataCache.FolderPermissionCacheKey, clearRuntime, portalId));
         }
 
         private void ClearHostCacheInternal(bool clearRuntime)

Website/Providers/DataProviders/SqlDataProvider/08.00.05.01.SqlDataProvider

@@ -83,6 +83,23 @@ UPDATE {databaseOwner}{objectQualifier}Packages SET Version = @version WHERE Nam
 
 GO
 
+IF object_id(N'{databaseOwner}[{objectQualifier}GetFolderPermissionsByPortalAndPath]', 'P') IS NOT NULL
+    DROP PROCEDURE {databaseOwner}[{objectQualifier}GetFolderPermissionsByPortalAndPath]
+GO
+
+CREATE PROCEDURE {databaseOwner}[{objectQualifier}GetFolderPermissionsByPortalAndPath]
+    @PortalId int,
+    @FolderPath nvarchar(300)
+AS
+BEGIN
+    SET @PortalId = IsNull(@PortalId, -1)
+
+    SELECT *
+    FROM   {databaseOwner}[{objectQualifier}vw_FolderPermissions]
+    WHERE  PortalID = @PortalId AND (FolderPath = @FolderPath OR @FolderPath IS NULL)
+END
+GO
+
 IF  EXISTS (SELECT * FROM sys.objects WHERE object_id = OBJECT_ID(N'{databaseOwner}[{objectQualifier}GetAllFiles]') AND type in (N'P', N'PC'))
 	DROP PROCEDURE {databaseOwner}[{objectQualifier}GetAllFiles]
 GO

Website/Providers/DataProviders/SqlDataProvider/08.00.05.SqlDataProvider

@@ -8,8 +8,6 @@
 /*****                                                  *****/
 /************************************************************/
 
-
-
 /************************************************************/
 /*****              SqlDataProvider                     *****/
 /************************************************************/