/// <summary>
/// Constructor
/// </summary>
/// <returns></returns>
public BaseTemplate_Update <T, V> Update()
{
try
{
// first of all, we check if user has the right to perform this operation!
if (HasUserToBeAuthenticated())
{
if (!IsUserAuthenticated() || !HasUserPrivilege())
{
return(this);
}
}
//Run the parameters through the cleanse process
dynamic cleansedParams = Cleanser.Cleanse(Request.parameters);
try
{
DTO = GetDTO(cleansedParams);
}
catch
{
throw new InputFormatException();
}
DTO = Sanitizer.Sanitize(DTO);
DTOValidationResult = Validator.Validate(DTO);
if (!DTOValidationResult.IsValid)
{
OnDTOValidationError();
return(this);
}
Ado.StartTransaction(IsolationLevel.Snapshot);
// The Actual Creation should happen here by the specific class!
if (!Execute())
{
Ado.RollbackTransaction();
OnExecutionError();
return(this);
}
Ado.CommitTransaction();
OnExecutionSuccess();
return(this);
}
catch (FormatException formatException)
{
//An error has been caught, rollback the transaction, log the error and return a message to the caller
Ado.RollbackTransaction();
Log.Instance.Error(formatException);
Response.error = Label.Get("error.schema");
return(this);
}
catch (InputFormatException inputError)
{
//An error has been caught, rollback the transaction, log the error and return a message to the caller
Ado.RollbackTransaction();
Log.Instance.Error(inputError);
Response.error = Label.Get("error.schema");
return(this);
}
catch (Exception ex)
{
Ado.RollbackTransaction();
//An error has been caught, rollback the transaction, log the error and return a message to the caller
Log.Instance.Error(ex);
Response.error = Label.Get("error.exception");
return(this);
}
finally
{
Dispose();
}
}
/// <summary>
/// Constructor
/// </summary>
/// <returns></returns>
public BaseTemplate_Update <T, V> Update()
{
try
{
// first of all, we check if user has the right to perform this operation!
if (HasUserToBeAuthenticated())
{
if (!IsUserAuthenticated() || !HasUserPrivilege())
{
OnAuthenticationFailed();
return(this);
}
}
//if we didn't attempt to authenticate and it's an external call then we still need to the the SamAccountName
if (SamAccountName == null && Request.sessionCookie != null)
{
//Does the cookie correspond with a live token for a user?
ADO_readerOutput user;
using (Login_BSO lBso = new Login_BSO())
{
user = lBso.ReadBySession(Request.sessionCookie.Value);
if (user.hasData)
{
SamAccountName = user.data[0].CcnUsername;
}
}
}
//Run the parameters through the cleanse process
dynamic cleansedParams;
//If the API has the IndividualCleanseNoHtml attribute then parameters are cleansed individually
//Any of these parameters whose corresponding DTO property contains the NoHtmlStrip attribute will not be cleansed of HTML tags
if (Resources.MethodReader.MethodHasAttribute(Request.method, "IndividualCleanseNoHtml"))
{
dynamic dto = GetDTO(Request.parameters);
cleansedParams = Cleanser.Cleanse(Request.parameters, dto);
}
else
{
cleansedParams = Cleanser.Cleanse(Request.parameters);
}
try
{
DTO = GetDTO(cleansedParams);
}
catch
{
throw new InputFormatException();
}
DTO = Sanitizer.Sanitize(DTO);
DTOValidationResult = Validator.Validate(DTO);
if (!DTOValidationResult.IsValid)
{
OnDTOValidationError();
return(this);
}
Ado.StartTransaction();
// The Actual Creation should happen here by the specific class!
if (!Execute())
{
Ado.RollbackTransaction();
OnExecutionError();
}
else
{
Ado.CommitTransaction();
OnExecutionSuccess();
}
return(this);
}
catch (FormatException formatException)
{
//An error has been caught, rollback the transaction, log the error and return a message to the caller
Ado.RollbackTransaction();
Log.Instance.Error(formatException);
Response.error = Label.Get("error.schema");
return(this);
}
catch (InputFormatException inputError)
{
//An error has been caught, rollback the transaction, log the error and return a message to the caller
Ado.RollbackTransaction();
Log.Instance.Error(inputError);
Response.error = Label.Get("error.schema");
return(this);
}
catch (Exception ex)
{
Ado.RollbackTransaction();
//An error has been caught, rollback the transaction, log the error and return a message to the caller
Log.Instance.Error(ex);
Response.error = Label.Get("error.exception");
return(this);
}
finally
{
Dispose();
}
}
