public async Task <IActionResult> PostAsync(ContentActivity contentActivity)
{
var node = contentActivity.Node;
var userId = HttpContext.User.FindFirstValue(ClaimTypes.NameIdentifier);
var allowed = await _securityService.IsAllowedAsync(
HttpContext.User,
node.Module,
node.Type,
Actions.Add);
if (!allowed)
{
throw new Exception("User is not allowed to perform the action.");
}
node.CreatedBy = userId;
var id = await _nodeService.AddAsync(node);
var message = contentActivity.Message;
await _activityService.AddAsync(id, message, userId);
return(Ok(id));
}