Merge branch 'CactuseSecurity:develop' into develop

SolidProgramming · web-flow · commit 84902f198010 · 2026-02-19T13:24:01.000+01:00
diff --git a/roles/common/files/fwo-api-calls/modelling/getInterfaceUsers.graphql b/roles/common/files/fwo-api-calls/modelling/getInterfaceUsers.graphql
@@ -7,6 +7,7 @@ query getInterfaceUsers ($id: Int){
     owner{
       id
       name
+      app_id_external
     }
   }
 }
diff --git a/roles/lib/files/FWO.Report/ReportGenerator.cs b/roles/lib/files/FWO.Report/ReportGenerator.cs
@@ -125,7 +125,7 @@ await report.Generate(userConfig.ElementsPerFetch, apiConnection,
         private static async Task PrepareConnReportData(FwoOwner selectedOwner, OwnerConnectionReport ownerReport, ReportType reportType, ModellingFilter modellingFilter,
             ApiConnection apiConnection, UserConfig userConfig, Action<Exception?, string, string, bool> displayMessageInUi)
         {
-            ModellingHandlerBase handlerBase = new(apiConnection, userConfig, new(), false, displayMessageInUi);
+            ModellingHandlerBase handlerBase = new(apiConnection, userConfig, new(), false, displayMessageInUi, true, false);
             foreach (var conn in ownerReport.Connections)
             {
                 await handlerBase.ExtractUsedInterface(conn);
diff --git a/roles/lib/files/FWO.Services/Modelling/ModellingAppServerHandler.cs b/roles/lib/files/FWO.Services/Modelling/ModellingAppServerHandler.cs
@@ -15,8 +15,9 @@ public class ModellingAppServerHandler : ModellingHandlerBase
 
 
         public ModellingAppServerHandler(ApiConnection apiConnection, UserConfig userConfig, FwoOwner application,
-            ModellingAppServer appServer, List<ModellingAppServer> availableAppServers, bool addMode, Action<Exception?, string, string, bool> displayMessageInUi)
-            : base(apiConnection, userConfig, application, addMode, displayMessageInUi)
+            ModellingAppServer appServer, List<ModellingAppServer> availableAppServers, bool addMode,
+            Action<Exception?, string, string, bool> displayMessageInUi, bool readOnly, bool isOwner)
+            : base(apiConnection, userConfig, application, addMode, displayMessageInUi, readOnly, isOwner)
         {
             ActAppServer = appServer;
             AvailableAppServers = availableAppServers;
@@ -35,7 +36,16 @@ public async Task<bool> Save()
                 }
                 if (CheckAppServer())
                 {
+                    if(IsOwner)
+                    {
+                        apiConnection.SetRole(Roles.Admin);  // usual modeller has no write permission on App Servers
+                    }
                     (long? appServerId, string? ExistingAppServerName) = await AppServerHelper.UpsertAppServer(apiConnection, userConfig, ActAppServer, !userConfig.DnsLookup, true, AddMode);
+                    if(IsOwner)
+                    {
+                        apiConnection.SwitchBack();
+                    }
+
                     if (appServerId != null)
                     {
                         if (AddMode)
diff --git a/roles/lib/files/FWO.Services/Modelling/ModellingAppServerListHandler.cs b/roles/lib/files/FWO.Services/Modelling/ModellingAppServerListHandler.cs
@@ -20,8 +20,8 @@ public class ModellingAppServerListHandler : ModellingHandlerBase
 
 
         public ModellingAppServerListHandler(ApiConnection apiConnection, UserConfig userConfig,
-            Action<Exception?, string, string, bool> displayMessageInUi)
-            : base(apiConnection, userConfig, new FwoOwner(), false, displayMessageInUi)
+            Action<Exception?, string, string, bool> displayMessageInUi, bool readOnly, bool isOwner)
+            : base(apiConnection, userConfig, new FwoOwner(), false, displayMessageInUi, readOnly, isOwner)
         { }
 
         public async Task Init(FwoOwner application)
@@ -59,7 +59,7 @@ public void HandleAppServer(ModellingAppServer appServer)
         {
             try
             {
-                AppServerHandler = new ModellingAppServerHandler(apiConnection, userConfig, Application, appServer, ManualAppServers, AddAppServerMode, DisplayMessageInUi);
+                AppServerHandler = new ModellingAppServerHandler(apiConnection, userConfig, Application, appServer, ManualAppServers, AddAppServerMode, DisplayMessageInUi, ReadOnly, IsOwner);
                 EditAppServerMode = true;
             }
             catch (Exception exception)
@@ -79,7 +79,10 @@ public async Task DeleteAppServer()
         {
             try
             {
-                apiConnection.SetRole(Roles.Admin);
+                if(IsOwner)
+                {
+                    apiConnection.SetRole(Roles.Admin);  // usual modeller has no write permission on App Servers
+                }
                 if (await CheckAppServerInUse(actAppServer))
                 {
                     await apiConnection.SendQueryAsync<ReturnId>(ModellingQueries.setAppServerDeletedState, new { id = actAppServer.Id, deleted = true });
@@ -93,7 +96,10 @@ await LogChange(ModellingTypes.ChangeType.Delete, ModellingTypes.ModObjectType.A
                 }
                 await AppServerHelper.ReactivateOtherSource(apiConnection, userConfig, actAppServer);
                 await Init(Application);
-                apiConnection.SwitchBack();
+                if(IsOwner)
+                {
+                    apiConnection.SwitchBack();
+                }
                 DeleteAppServerMode = false;
             }
             catch (Exception exception)
@@ -115,10 +121,18 @@ public async Task ReactivateAppServer()
             {
                 if (actAppServer.IsDeleted)
                 {
+                    if(IsOwner)
+                    {
+                        apiConnection.SetRole(Roles.Admin);  // usual modeller has no write permission on App Servers
+                    }
                     await apiConnection.SendQueryAsync<ReturnId>(ModellingQueries.setAppServerDeletedState, new { id = actAppServer.Id, deleted = false });
                     await LogChange(ModellingTypes.ChangeType.Reactivate, ModellingTypes.ModObjectType.AppServer, actAppServer.Id,
                         $"Reactivate App Server: {actAppServer.Display()}", Application.Id);
                     await AppServerHelper.DeactivateOtherSources(apiConnection, userConfig, actAppServer);
+                    if(IsOwner)
+                    {
+                        apiConnection.SwitchBack();
+                    }
                     await Init(Application);
                 }
                 ReactivateAppServerMode = false;
diff --git a/roles/lib/files/FWO.Services/Modelling/ModellingConnectionHandlerNwObjHandling.cs b/roles/lib/files/FWO.Services/Modelling/ModellingConnectionHandlerNwObjHandling.cs
@@ -353,7 +353,7 @@ public void DisplayAppServer(ModellingAppServer? appServer)
             {
                 try
                 {
-                    AppServerHandler = new(apiConnection, userConfig, Application, appServer, [], false, DisplayMessageInUi) { ReadOnly = true };
+                    AppServerHandler = new(apiConnection, userConfig, Application, appServer, [], false, DisplayMessageInUi, ReadOnly, IsOwner) { ReadOnly = true };
                     DisplayAppServerMode = true;
                 }
                 catch (Exception exception)
diff --git a/roles/lib/files/FWO.Services/Modelling/ModellingHandlerBase.cs b/roles/lib/files/FWO.Services/Modelling/ModellingHandlerBase.cs
@@ -48,7 +48,7 @@ public class ModellingHandlerBase
         private const string DeactMsg = "C9001";
 
         public ModellingHandlerBase(ApiConnection apiConnection, UserConfig userConfig, FwoOwner application,
-            bool addMode, Action<Exception?, string, string, bool> displayMessageInUi, bool readOnly = false, bool isOwner = true)
+            bool addMode, Action<Exception?, string, string, bool> displayMessageInUi, bool readOnly, bool isOwner)
         {
             this.apiConnection = apiConnection;
             this.userConfig = userConfig;
diff --git a/roles/tests-unit/files/FWO.Test/ModellingAppServerHandlerTest.cs b/roles/tests-unit/files/FWO.Test/ModellingAppServerHandlerTest.cs
@@ -43,7 +43,9 @@ public async Task Save_ReturnsFalse_WhenMissingIpOrCustomType()
                 new ModellingAppServer { Ip = "", CustomType = 1 },
                 [],
                 false,
-                (_, _, message, _) => lastMessage = message
+                (_, _, message, _) => lastMessage = message,
+                false,
+                false
             );
 
             bool result = await handler.Save();
@@ -64,7 +66,9 @@ public async Task Save_ReturnsFalse_WhenIpInvalid_AndSetsManualImport()
                 appServer,
                 [],
                 false,
-                (_, _, message, _) => lastMessage = message
+                (_, _, message, _) => lastMessage = message,
+                false,
+                false
             );
 
             bool result = await handler.Save();
@@ -93,7 +97,9 @@ public void Reset_RestoresOriginalValues_AndUpdatesList()
                 appServer,
                 available,
                 false,
-                (_, _, _, _) => { }
+                (_, _, _, _) => { },
+                false,
+                false
             );
 
             handler.ActAppServer.Name = "changed";
diff --git a/roles/ui/files/FWO.UI/Pages/Monitoring/MonitorModelling.razor b/roles/ui/files/FWO.UI/Pages/Monitoring/MonitorModelling.razor
@@ -60,7 +60,7 @@
     {
         try
         {
-            HandlerBase = new(apiConnection, userConfig, new(), false, DisplayMessageInUi);
+            HandlerBase = new(apiConnection, userConfig, new(), false, DisplayMessageInUi, true, false);
             Owners = await apiConnection.SendQueryAsync<List<FwoOwner>>(OwnerQueries.getOwners);
             if (Owners.Count > 0)
             {
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditAppRole.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditAppRole.razor
@@ -130,7 +130,14 @@
                 {
                     @if(AppRoleHandler.IsOwner)
                     {
-                        <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                        <AuthorizeView Roles="@Roles.Modeller">
+                            <Authorized>
+                                <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                            </Authorized>
+                            <NotAuthorized>
+                                <button type="button" class="btn btn-sm btn-primary" disabled>@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                            </NotAuthorized> 
+                        </AuthorizeView>
                     }
                     else
                     {
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConn.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConn.razor
@@ -414,7 +414,14 @@
                     {
                         @if((ConnHandler.IsOwner || ConnHandler.ActConn.IsRequested) && !(ConnHandler.ActConn.GetBoolProperty(ConState.Rejected.ToString()) || ConnHandler.ActConn.GetBoolProperty(ConState.Decommissioned.ToString())))
                         {
-                            <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                            <AuthorizeView Roles="@Roles.Modeller">
+                                <Authorized>
+                                    <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                                </Authorized>
+                                <NotAuthorized>
+                                    <button type="button" class="btn btn-sm btn-primary" disabled>@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                                </NotAuthorized> 
+                            </AuthorizeView>
                         }
                         else
                         {
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConnLeftSide.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConnLeftSide.razor
@@ -209,20 +209,20 @@
     </Sidebar>
     <EditAppRole @bind-Display="ConnHandler.EditAppRoleMode" @bind-AppRoleHandler="ConnHandler.AppRoleHandler" RefreshParent="RefreshParentWithoutRefreshingActConn"/>
     <ConfirmDelete @bind-Display="ConnHandler.DeleteAppRoleMode" PerformAction="async () => await WrapAsync(ConnHandler.DeleteAppRole)"
-    Title="@userConfig.GetText("delete_app_role")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" DeleteAllowed="ConnHandler.DeleteAllowed" Enabled="ConnHandler.IsOwner"/>
+        Title="@userConfig.GetText("delete_app_role")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" DeleteAllowed="ConnHandler.DeleteAllowed" Enabled="ConnHandler.IsOwner"/>
     <EditServiceGroup @bind-Display="ConnHandler.EditSvcGrpMode" @bind-SvcGroupHandler="ConnHandler.SvcGrpHandler"/>
     <ConfirmDelete @bind-Display="ConnHandler.DeleteSvcGrpMode" PerformAction="async () => await WrapAsync(ConnHandler.DeleteServiceGroup)"
-    Title="@userConfig.GetText("delete_service_group")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" DeleteAllowed="ConnHandler.DeleteAllowed" Enabled="ConnHandler.IsOwner"/>
+        Title="@userConfig.GetText("delete_service_group")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" DeleteAllowed="ConnHandler.DeleteAllowed" Enabled="ConnHandler.IsOwner"/>
     <EditService @bind-Display="ConnHandler.EditServiceMode" ServiceHandler="ConnHandler.ServiceHandler" RefreshParent="RefreshParentWithoutRefreshingActConn"/>
     <ConfirmDelete @bind-Display="ConnHandler.DeleteServiceMode" PerformAction="async () => await WrapAsync(ConnHandler.DeleteService)"
-    Title="@userConfig.GetText("delete_service")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" DeleteAllowed="ConnHandler.DeleteAllowed" Enabled="ConnHandler.IsOwner"/>
+        Title="@userConfig.GetText("delete_service")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" DeleteAllowed="ConnHandler.DeleteAllowed" Enabled="ConnHandler.IsOwner"/>
     <SearchInterface @bind-Display="SearchInterfaceMode" @bind-PreselectedInterfaces="ConnHandler.PreselectedInterfaces" Application="ConnHandler.Application"/>
     <ConfirmDelete @bind-Display="ConnHandler.RemovePreselectedInterfaceMode" PerformAction="async () => await WrapAsync(ConnHandler.RemovePreselectedInterface)"
-    Title="@userConfig.GetText("remove_connection")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" Remove="true" Enabled="ConnHandler.IsOwner"/>
+        Title="@userConfig.GetText("remove_connection")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" Remove="true" Enabled="ConnHandler.IsOwner"/>
     <SearchNwObject @bind-Display="SearchNwObjectMode" @bind-ObjectList="ConnHandler.AvailableSelectedObjects"
-                    Application="ConnHandler.Application" Refresh="ConnHandler.RefreshSelectableNwObjects" OnClose="OnSearchNwObjectClose" />
+        Application="ConnHandler.Application" Refresh="ConnHandler.RefreshSelectableNwObjects" OnClose="OnSearchNwObjectClose" />
     <ConfirmDelete @bind-Display="ConnHandler.RemoveNwObjectMode" PerformAction="async () => await WrapAsync(ConnHandler.RemoveNwGrpObject)"
-    Title="@userConfig.GetText("remove_nw_object")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" Remove="true" Enabled="ConnHandler.IsOwner"/>
+        Title="@userConfig.GetText("remove_nw_object")" DeleteMessage="@ConnHandler.Message" AllowedRoles="@Roles.Modeller" Remove="true" Enabled="ConnHandler.IsOwner"/>
     <RequestInterfacePopup @bind-Display="SelectAppMode" Apps="ConnHandler.AllApps" RequestingOwner="ConnHandler.Application" RefreshParent="async () => await WrapAsync(ConnHandler.RefreshPreselectedInterfaces)"/>
     <EditConnPopup @bind-Display="ConnHandler.DisplaySelectedInterfaceMode" ConnHandler="ConnHandler.IntConnHandler"/>
 }
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConnPopup.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConnPopup.razor
@@ -11,7 +11,14 @@
     <Footer>
         @if(ReplaceMode)
         {
-            <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+            <AuthorizeView Roles="@(Roles.Modeller)">
+                <Authorized>
+                    <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                </Authorized>
+                <NotAuthorized>
+                    <button type="button" class="btn btn-sm btn-primary" disabled>@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>
+                </NotAuthorized> 
+            </AuthorizeView>
             <button type="button" class="btn btn-sm btn-secondary" @onclick="Close">@(DisplayService.DisplayButton(userConfig, "cancel", Icons.Cancel))</button>
         }
         else
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/InterfaceUsersPopup.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/InterfaceUsersPopup.razor
@@ -1,14 +1,21 @@
 ﻿@inject UserConfig userConfig
 
-<PopUp Title="@(userConfig.GetText("using_connections") + InterfaceName)" Show="@Display" Size=PopupSize.Medium OnClose="Close">
+<PopUp Title="@Title" Show="@Display" Size=PopupSize.Medium OnClose="Close">
     <Body>
         @if (Display)
         {
-            <Table TableClass="table table-bordered table-sm th-bg-secondary table-responsive overflow-auto sticky-header" TableItem="ModellingConnection" Items="UsingConnections">
+            <Table TableClass=" table table-bordered table-sm th-bg-secondary table-responsive overflow-auto sticky-header" TableItem="ModellingConnection" Items="UsingConnections">
                 <Column TableItem="ModellingConnection" Title="@(userConfig.GetText("id"))" Field="@(x => x.Id)" />
-                <Column TableItem="ModellingConnection" Title="@(userConfig.GetText("owner"))" Field="@(x => x.App.Name)" >
+                <Column TableItem="ModellingConnection" Title="@(userConfig.GetText("owner"))" Field="@(x => x.App.Name)">
                     <Template>
-                        @(context.App.Name)
+                        @if (string.IsNullOrWhiteSpace(context.App.ExtAppId))
+                        {
+                            @($"{@context.App.Name}")
+                        }
+                        else
+                        {
+                            @($"{@context.App.Name} ({context.App.ExtAppId})")
+                        }
                     </Template>
                 </Column>
                 <Column TableItem="ModellingConnection" Title="@(userConfig.GetText("name"))" Field="@(x => x.Name)" />
@@ -32,12 +39,29 @@
     [Parameter]
     public EventCallback<bool> DisplayChanged { get; set; }
 
-    [Parameter] 
+    [Parameter]
     public string InterfaceName { get; set; } = "";
 
-    [Parameter] 
+    [Parameter]
     public List<ModellingConnection> UsingConnections { get; set; } = [];
 
+    [Parameter, EditorRequired]
+    public required FwoOwner App { private get; init; }
+
+    private string Title
+    {
+        get
+        {
+            if (App is null || string.IsNullOrWhiteSpace(App.ExtAppId) || string.IsNullOrWhiteSpace(App.Name))
+            {
+                return $"{userConfig.GetText("using_connections")} {InterfaceName}";
+            }
+            else
+            {
+                return $"{userConfig.GetText("using_connections")} {InterfaceName} - {App.Name} ({App.ExtAppId})";
+            }
+        }
+    }
 
     private void Close()
     {
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/ManualAppServer.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/ManualAppServer.razor
@@ -87,9 +87,9 @@
     </PopUp>
     <EditAppServer @bind-Display="appServerListHandler.EditAppServerMode" @bind-AppServerHandler="appServerListHandler.AppServerHandler" />
     <ConfirmDelete @bind-Display="appServerListHandler.DeleteAppServerMode" PerformAction="Delete"
-    Title="@userConfig.GetText("delete_app_server")" DeleteMessage="@appServerListHandler.Message" />
+        Title="@userConfig.GetText("delete_app_server")" DeleteMessage="@appServerListHandler.Message" />
     <Confirm @bind-Display="appServerListHandler.ReactivateAppServerMode" PerformAction="Reactivate"
-    Title="@userConfig.GetText("reactivate")" Message="@appServerListHandler.Message" />
+        Title="@userConfig.GetText("reactivate")" Message="@appServerListHandler.Message" />
 }
 <InProgress Display="workInProgress" />
 
@@ -116,7 +116,7 @@
     {
         try
         {
-            appServerListHandler = new ModellingAppServerListHandler(apiConnection, userConfig, DisplayMessageInUi);
+            appServerListHandler = new ModellingAppServerListHandler(apiConnection, userConfig, DisplayMessageInUi, false, true);
             if (userConfig.ModAppServerTypes != "")
             {
                 appServerTypes = JsonSerializer.Deserialize<List<AppServerType>>(userConfig.ModAppServerTypes) ?? new();
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/NetworkModelling.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/NetworkModelling.razor
diff --git a/roles/ui/files/FWO.UI/Shared/MainLayout.razor b/roles/ui/files/FWO.UI/Shared/MainLayout.razor

Original file line number	Diff line number	Diff line change
`@@ -7,6 +7,7 @@ query getInterfaceUsers ($id: Int){`
`7`	`7`	`owner{`
`8`	`8`	`id`
`9`	`9`	`name`
	`10`	`+ app_id_external`
`10`	`11`	`}`
`11`	`12`	`}`
`12`	`13`	`}`
Original file line number	Diff line number	Diff line change
`@@ -125,7 +125,7 @@ await report.Generate(userConfig.ElementsPerFetch, apiConnection,`
`125`	`125`	`private static async Task PrepareConnReportData(FwoOwner selectedOwner, OwnerConnectionReport ownerReport, ReportType reportType, ModellingFilter modellingFilter,`
`126`	`126`	`ApiConnection apiConnection, UserConfig userConfig, Action<Exception?, string, string, bool> displayMessageInUi)`
`127`	`127`	`{`
`128`		`- ModellingHandlerBase handlerBase = new(apiConnection, userConfig, new(), false, displayMessageInUi);`
	`128`	`+ ModellingHandlerBase handlerBase = new(apiConnection, userConfig, new(), false, displayMessageInUi, true, false);`
`129`	`129`	`foreach (var conn in ownerReport.Connections)`
`130`	`130`	`{`
`131`	`131`	`await handlerBase.ExtractUsedInterface(conn);`
Original file line number	Diff line number	Diff line change
`@@ -20,8 +20,8 @@ public class ModellingAppServerListHandler : ModellingHandlerBase`
`20`	`20`
`21`	`21`
`22`	`22`	`public ModellingAppServerListHandler(ApiConnection apiConnection, UserConfig userConfig,`
`23`		`- Action<Exception?, string, string, bool> displayMessageInUi)`
`24`		`- : base(apiConnection, userConfig, new FwoOwner(), false, displayMessageInUi)`
	`23`	`+ Action<Exception?, string, string, bool> displayMessageInUi, bool readOnly, bool isOwner)`
	`24`	`+ : base(apiConnection, userConfig, new FwoOwner(), false, displayMessageInUi, readOnly, isOwner)`
`25`	`25`	`{ }`
`26`	`26`
`27`	`27`	`public async Task Init(FwoOwner application)`
`@@ -59,7 +59,7 @@ public void HandleAppServer(ModellingAppServer appServer)`
`59`	`59`	`{`
`60`	`60`	`try`
`61`	`61`	`{`
`62`		`- AppServerHandler = new ModellingAppServerHandler(apiConnection, userConfig, Application, appServer, ManualAppServers, AddAppServerMode, DisplayMessageInUi);`
	`62`	`+ AppServerHandler = new ModellingAppServerHandler(apiConnection, userConfig, Application, appServer, ManualAppServers, AddAppServerMode, DisplayMessageInUi, ReadOnly, IsOwner);`
`63`	`63`	`EditAppServerMode = true;`
`64`	`64`	`}`
`65`	`65`	`catch (Exception exception)`
`@@ -79,7 +79,10 @@ public async Task DeleteAppServer()`
`79`	`79`	`{`
`80`	`80`	`try`
`81`	`81`	`{`
`82`		`- apiConnection.SetRole(Roles.Admin);`
	`82`	`+ if(IsOwner)`
	`83`	`+ {`
	`84`	`+ apiConnection.SetRole(Roles.Admin); // usual modeller has no write permission on App Servers`
	`85`	`+ }`
`83`	`86`	`if (await CheckAppServerInUse(actAppServer))`
`84`	`87`	`{`
`85`	`88`	`await apiConnection.SendQueryAsync<ReturnId>(ModellingQueries.setAppServerDeletedState, new { id = actAppServer.Id, deleted = true });`
`@@ -93,7 +96,10 @@ await LogChange(ModellingTypes.ChangeType.Delete, ModellingTypes.ModObjectType.A`
`93`	`96`	`}`
`94`	`97`	`await AppServerHelper.ReactivateOtherSource(apiConnection, userConfig, actAppServer);`
`95`	`98`	`await Init(Application);`
`96`		`- apiConnection.SwitchBack();`
	`99`	`+ if(IsOwner)`
	`100`	`+ {`
	`101`	`+ apiConnection.SwitchBack();`
	`102`	`+ }`
`97`	`103`	`DeleteAppServerMode = false;`
`98`	`104`	`}`
`99`	`105`	`catch (Exception exception)`
`@@ -115,10 +121,18 @@ public async Task ReactivateAppServer()`
`115`	`121`	`{`
`116`	`122`	`if (actAppServer.IsDeleted)`
`117`	`123`	`{`
	`124`	`+ if(IsOwner)`
	`125`	`+ {`
	`126`	`+ apiConnection.SetRole(Roles.Admin); // usual modeller has no write permission on App Servers`
	`127`	`+ }`
`118`	`128`	`await apiConnection.SendQueryAsync<ReturnId>(ModellingQueries.setAppServerDeletedState, new { id = actAppServer.Id, deleted = false });`
`119`	`129`	`await LogChange(ModellingTypes.ChangeType.Reactivate, ModellingTypes.ModObjectType.AppServer, actAppServer.Id,`
`120`	`130`	`$"Reactivate App Server: {actAppServer.Display()}", Application.Id);`
`121`	`131`	`await AppServerHelper.DeactivateOtherSources(apiConnection, userConfig, actAppServer);`
	`132`	`+ if(IsOwner)`
	`133`	`+ {`
	`134`	`+ apiConnection.SwitchBack();`
	`135`	`+ }`
`122`	`136`	`await Init(Application);`
`123`	`137`	`}`
`124`	`138`	`ReactivateAppServerMode = false;`
Original file line number	Diff line number	Diff line change
`@@ -353,7 +353,7 @@ public void DisplayAppServer(ModellingAppServer? appServer)`
`353`	`353`	`{`
`354`	`354`	`try`
`355`	`355`	`{`
`356`		`- AppServerHandler = new(apiConnection, userConfig, Application, appServer, [], false, DisplayMessageInUi) { ReadOnly = true };`
	`356`	`+ AppServerHandler = new(apiConnection, userConfig, Application, appServer, [], false, DisplayMessageInUi, ReadOnly, IsOwner) { ReadOnly = true };`
`357`	`357`	`DisplayAppServerMode = true;`
`358`	`358`	`}`
`359`	`359`	`catch (Exception exception)`
Original file line number	Diff line number	Diff line change
`@@ -48,7 +48,7 @@ public class ModellingHandlerBase`
`48`	`48`	`private const string DeactMsg = "C9001";`
`49`	`49`
`50`	`50`	`public ModellingHandlerBase(ApiConnection apiConnection, UserConfig userConfig, FwoOwner application,`
`51`		`- bool addMode, Action<Exception?, string, string, bool> displayMessageInUi, bool readOnly = false, bool isOwner = true)`
	`51`	`+ bool addMode, Action<Exception?, string, string, bool> displayMessageInUi, bool readOnly, bool isOwner)`
`52`	`52`	`{`
`53`	`53`	`this.apiConnection = apiConnection;`
`54`	`54`	`this.userConfig = userConfig;`
Original file line number	Diff line number	Diff line change
`@@ -60,7 +60,7 @@`
`60`	`60`	`{`
`61`	`61`	`try`
`62`	`62`	`{`
`63`		`- HandlerBase = new(apiConnection, userConfig, new(), false, DisplayMessageInUi);`
	`63`	`+ HandlerBase = new(apiConnection, userConfig, new(), false, DisplayMessageInUi, true, false);`
`64`	`64`	`Owners = await apiConnection.SendQueryAsync<List<FwoOwner>>(OwnerQueries.getOwners);`
`65`	`65`	`if (Owners.Count > 0)`
`66`	`66`	`{`
Original file line number	Diff line number	Diff line change
`@@ -130,7 +130,14 @@`
`130`	`130`	`{`
`131`	`131`	`@if(AppRoleHandler.IsOwner)`
`132`	`132`	`{`
`133`		`- <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>`
	`133`	`+ <AuthorizeView Roles="@Roles.Modeller">`
	`134`	`+ <Authorized>`
	`135`	`+ <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>`
	`136`	`+ </Authorized>`
	`137`	`+ <NotAuthorized>`
	`138`	`+ <button type="button" class="btn btn-sm btn-primary" disabled>@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>`
	`139`	`+ </NotAuthorized>`
	`140`	`+ </AuthorizeView>`
`134`	`141`	`}`
`135`	`142`	`else`
`136`	`143`	`{`
Original file line number	Diff line number	Diff line change
`@@ -414,7 +414,14 @@`
`414`	`414`	`{`
`415`	`415`	`@if((ConnHandler.IsOwner \|\| ConnHandler.ActConn.IsRequested) && !(ConnHandler.ActConn.GetBoolProperty(ConState.Rejected.ToString()) \|\| ConnHandler.ActConn.GetBoolProperty(ConState.Decommissioned.ToString())))`
`416`	`416`	`{`
`417`		`- <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>`
	`417`	`+ <AuthorizeView Roles="@Roles.Modeller">`
	`418`	`+ <Authorized>`
	`419`	`+ <button type="button" class="btn btn-sm btn-primary" @onclick="Save">@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>`
	`420`	`+ </Authorized>`
	`421`	`+ <NotAuthorized>`
	`422`	`+ <button type="button" class="btn btn-sm btn-primary" disabled>@(DisplayService.DisplayButton(userConfig, "save", Icons.Save))</button>`
	`423`	`+ </NotAuthorized>`
	`424`	`+ </AuthorizeView>`
`418`	`425`	`}`
`419`	`426`	`else`
`420`	`427`	`{`