Fixed some tenant scoping on searches.

Author: eben-roux

Shuttle.Access.Application/Shuttle.Access.Application.csproj

@@ -32,7 +32,7 @@
 
   <PropertyGroup>
     <Description>Application concern implementations such as Shuttle.Mediator participants.</Description>
-    <Version>9.0.6</Version>
+    <Version>9.0.7</Version>
     <Authors>Eben Roux</Authors>
     <Company>Shuttle</Company>
     <Copyright>Copyright (c) 2025, Eben Roux</Copyright>

Shuttle.Access.AspNetCore/Shuttle.Access.AspNetCore.csproj

@@ -33,7 +33,7 @@
 
   <PropertyGroup>
     <Description>Authorization middleware for web API endpoints using Shuttle.Access.</Description>
-    <Version>9.0.6</Version>
+    <Version>9.0.7</Version>
     <Authors>Eben Roux</Authors>
     <Company>Shuttle</Company>
     <Copyright>Copyright (c) 2025, Eben Roux</Copyright>

Shuttle.Access.Messages/Shuttle.Access.Messages.csproj

@@ -27,7 +27,7 @@
 
   <PropertyGroup>
     <Description>Messages for use in Shuttle.Access implementations.</Description>
-    <Version>9.0.6</Version>
+    <Version>9.0.7</Version>
     <Authors>Eben Roux</Authors>
     <Company>Shuttle</Company>
     <Copyright>Copyright (c) 2025, Eben Roux</Copyright>

Shuttle.Access.RestClient/Shuttle.Access.RestClient.csproj

@@ -33,7 +33,7 @@
 
   <PropertyGroup>
     <Description>A client used to interact with the restful Shuttle.Access web API.</Description>
-    <Version>9.0.6</Version>
+    <Version>9.0.7</Version>
     <Authors>Eben Roux</Authors>
     <Company>Shuttle</Company>
     <Copyright>Copyright (c) 2025, Eben Roux</Copyright>

Shuttle.Access.SqlServer/IdentityQuery.cs

@@ -95,68 +95,68 @@ public async Task<IEnumerable<Guid>> TenantIdsAsync(Query.Identity.Specification
             });
     }
 
-    private IQueryable<Models.Identity> GetQueryable(Query.Identity.Specification identitySpecification)
+    private IQueryable<Models.Identity> GetQueryable(Query.Identity.Specification specification)
     {
         var queryable = _accessDbContext.Identities
             .AsNoTracking();
 
-        queryable = identitySpecification.ShouldIncludeTenants
+        queryable = specification.ShouldIncludeTenants
             ? queryable.Include(item => item.IdentityTenants).ThenInclude(item => item.Tenant)
             : queryable;
 
-        queryable = identitySpecification is { ShouldIncludeRoles: true, ShouldIncludePermissions: false }
-            ? queryable.Include(item => item.IdentityRoles)
+        queryable = specification is { ShouldIncludeRoles: true, ShouldIncludePermissions: false }
+            ? queryable.Include(item => item.IdentityRoles.Where(role => role.TenantId == specification.TenantId))
                 .ThenInclude(item => item.Role)
                 .ThenInclude(item => item.Tenant)
             : queryable;
 
-        queryable = identitySpecification.ShouldIncludePermissions
+        queryable = specification.ShouldIncludePermissions
             ? queryable.Include(item => item.IdentityRoles).ThenInclude(item => item.Role).ThenInclude(item => item.RolePermissions).ThenInclude(item => item.Permission) 
             : queryable;
 
-        if (!string.IsNullOrEmpty(identitySpecification.NameMatch))
+        if (!string.IsNullOrEmpty(specification.NameMatch))
         {
-            queryable = queryable.Where(e => e.Name.Contains(identitySpecification.NameMatch) || e.Description.Contains(identitySpecification.NameMatch));
+            queryable = queryable.Where(e => e.Name.Contains(specification.NameMatch) || e.Description.Contains(specification.NameMatch));
         }
 
-        if (!string.IsNullOrEmpty(identitySpecification.Name))
+        if (!string.IsNullOrEmpty(specification.Name))
         {
-            queryable = queryable.Where(e => e.Name == identitySpecification.Name || e.Description == identitySpecification.Name);
+            queryable = queryable.Where(e => e.Name == specification.Name || e.Description == specification.Name);
         }
 
-        if (identitySpecification.TenantId != null)
+        if (specification.TenantId != null)
         {
-            queryable = queryable.Where(e => e.IdentityTenants.Any(it => it.TenantId == identitySpecification.TenantId));
+            queryable = queryable.Where(e => e.IdentityTenants.Any(it => it.TenantId == specification.TenantId));
         }
 
-        if (!string.IsNullOrEmpty(identitySpecification.RoleName))
+        if (!string.IsNullOrEmpty(specification.RoleName))
         {
-            queryable = queryable.Where(e => e.IdentityRoles.Any(ir => ir.Role.Name == identitySpecification.RoleName));
+            queryable = queryable.Where(e => e.IdentityRoles.Any(ir => ir.Role.Name == specification.RoleName));
         }
 
-        if (identitySpecification.RoleId != null)
+        if (specification.RoleId != null)
         {
-            queryable = queryable.Where(e => e.IdentityRoles.Any(ir => ir.RoleId == identitySpecification.RoleId));
+            queryable = queryable.Where(e => e.IdentityRoles.Any(ir => ir.RoleId == specification.RoleId));
         }
 
-        if (identitySpecification.PermissionId != null)
+        if (specification.PermissionId != null)
         {
-            queryable = queryable.Where(e => e.IdentityRoles.Any(ir => ir.Role.RolePermissions.Any(rp => rp.PermissionId == identitySpecification.PermissionId)));
+            queryable = queryable.Where(e => e.IdentityRoles.Any(ir => ir.Role.RolePermissions.Any(rp => rp.PermissionId == specification.PermissionId)));
         }
 
-        if (identitySpecification.HasIds)
+        if (specification.HasIds)
         {
-            queryable = queryable.Where(e => identitySpecification.Ids.Contains(e.Id));
+            queryable = queryable.Where(e => specification.Ids.Contains(e.Id));
         }
 
-        if (identitySpecification.HasExcludedIds)
+        if (specification.HasExcludedIds)
         {
-            queryable = queryable.Where(e => !identitySpecification.ExcludedIds.Contains(e.Id));
+            queryable = queryable.Where(e => !specification.ExcludedIds.Contains(e.Id));
         }
 
-        if (identitySpecification.MaximumRows > 0)
+        if (specification.MaximumRows > 0)
         {
-            queryable = queryable.Take(identitySpecification.MaximumRows);
+            queryable = queryable.Take(specification.MaximumRows);
         }
 
         return queryable.AsSplitQuery();

Shuttle.Access.SqlServer/RoleQuery.cs

@@ -38,6 +38,7 @@ public async ValueTask<int> CountAsync(Query.Role.Specification specification, C
                 Id = e.Id,
                 Name = e.Name,
                 TenantId = e.TenantId,
+                TenantName = e.Tenant.Name,
                 Permissions = e.RolePermissions.Select(rolePermission => rolePermission.Permission).Select(permission => new Query.Permission
                 {
                     Id = permission.Id,
@@ -58,6 +59,7 @@ public async ValueTask<int> CountAsync(Query.Role.Specification specification, C
     {
         var queryable = _accessDbContext.Roles
             .AsNoTracking()
+            .Include(item => item.Tenant)
             .Include(item => item.RolePermissions).ThenInclude(item => item.Permission)
             .Include(item => item.IdentityRoles).ThenInclude(item => item.Identity)
             .AsSplitQuery();

Shuttle.Access.SqlServer/SessionQuery.cs

@@ -149,6 +149,11 @@ public async Task SaveAsync(Session session, CancellationToken cancellationToken
             queryable = queryable.Where(e => e.SessionPermissions.Any(p => specification.Permissions.Contains(p.Permission.Name)));
         }
 
+        if (specification.TenantId.HasValue)
+        {
+            queryable = queryable.Where(e => e.TenantId == specification.TenantId);
+        }
+
         return queryable;
     }
 }

Shuttle.Access.SqlServer/Shuttle.Access.SqlServer.csproj

@@ -31,7 +31,7 @@
 
   <PropertyGroup>
     <Description>Provides a Sql Server implementation of the data access components used by Shuttle.Access.</Description>
-    <Version>9.0.6</Version>
+    <Version>9.0.7</Version>
     <Authors>Eben Roux</Authors>
     <Company>Shuttle</Company>
     <Copyright>Copyright (c) 2025, Eben Roux</Copyright>

Shuttle.Access.WebApi.Contracts/Shuttle.Access.WebApi.Contracts.csproj

@@ -8,7 +8,7 @@
 
   <PropertyGroup>
     <Description>Shuttle.Access web API contracts.</Description>
-    <Version>9.0.6</Version>
+    <Version>9.0.7</Version>
     <Authors>Eben Roux</Authors>
     <Company>Shuttle</Company>
     <Copyright>Copyright (c) 2025, Eben Roux</Copyright>

Shuttle.Access.WebApi.Contracts/v1/Role.cs

@@ -4,6 +4,8 @@ public class Role
 {
     public Guid Id { get; set; }
     public string Name { get; set; } = string.Empty;
+    public Guid TenantId { get; set; }
+    public string TenantName { get; set; } = string.Empty;
     public List<Permission> Permissions { get; set; } = [];
     public List<Identity> Identities { get; set; } = [];