public override void OnActionExecuting(ActionExecutingContext filterContext)
{
if (filterContext.HttpContext.Request.IsAuthenticated && filterContext.HttpContext.Session["Id_User"] == null)
{
if (filterContext.HttpContext.Request.Cookies["UserInfo"] != null)
{
//load session data
var cookie = filterContext.HttpContext.Request.Cookies["UserInfo"];
int id;
if (int.TryParse(cookie.Value, out id))
{
//recover user id from cookie
filterContext.HttpContext.Session["Id_User"] = id;
using (var db = new ForTestingDbEntities())
{
//check if is admin
var name = (from x in db.Users where x.Id == id select x.UserName).First();
filterContext.HttpContext.Session["IsAdmin"] = name == "admin";
}
}
}
else
{
if (filterContext.HttpContext.Request.IsAjaxRequest())
{
filterContext.Result = new JsonResult()
{
Data = new { Success = false, Message = "auth" }
};
}
else
{
filterContext.Result = new RedirectToRouteResult("Default", new RouteValueDictionary
{
{ "controller", "Account" },
{ "action", "LogOn" },
{ "ReturnUrl", filterContext.HttpContext.Request.RawUrl }
});
}
}
}
base.OnActionExecuting(filterContext);
}
public AddPictureController()
{
_clientRepo = new ClientsRepository();
_db = new ForTestingDbEntities();
}
public ClientsRepository()
{
db = new ForTestingDbEntities();
}
public AddressesRepository()
{
db = new ForTestingDbEntities();
}
public UsersRepository()
{
db = new ForTestingDbEntities();
}
