public async Task <IQueryable <Album> > GetAllAlbum() { string currentUserId = new ConfigModel().DefaultUserId; try { currentUserId = await ManageUserController.GetUserId(Request, User); } catch (Exception e) { Trace.WriteLine("Invalid auth token: " + e); } return(Query().Where(x => x.UserId == currentUserId || x.IsDefault)); }
// GET tables/Image public async Task <IQueryable <Image> > GetAllImage() { string defaultUserId = new ConfigModel().DefaultUserId; string currentUserId = defaultUserId; try { currentUserId = await ManageUserController.GetUserId(Request, User); } catch (Exception e) { Trace.WriteLine("Invalid auth token: " + e); } // return images owned by the current user or the guest user return(Query().Where(i => i.UserId == currentUserId || i.UserId == defaultUserId).Where(i => i.IsVisible)); }
// POST tables/Image public async Task <IHttpActionResult> PostImage(Image item) { var config = new ConfigModel(); if (item.AlbumId == config.DefaultAlbumId) { item.UserId = config.DefaultUserId; // public album images can be viewed by anyone, so set to the default user if (AppSettings.PublicAlbumRequiresAuth) { // if not logged in with AAD, images in public album should not be visible item.IsVisible = await ManageUserController.IsAadLogin(Request, User); } } Image current = await InsertAsync(item); return(CreatedAtRoute("Tables", new { id = current.Id }, current)); }