[Authorize(gAppConst.AccessPolicies.LevelThree)] /// Done
public async Task <IActionResult> Put(int ideaId, bool isBlocked)
{
try
{
/// if the idea record with the same id is not found
if (!await DbContext.Ideas.AnyAsync(d => d.Id == ideaId).ConfigureAwait(false))
{
gAppConst.Error(ref ErrorsList, "Idea not found");
return(BadRequest(ErrorsList));
}
gIdea idea = await DbContext.Ideas.FirstAsync(i => i.Id == ideaId).ConfigureAwait(false);
idea.IsBlocked = isBlocked;
/// save the changes to the database
DbContext.Ideas.Update(idea);
await DbContext.SaveChangesAsync().ConfigureAwait(false);
/// thus return 200 ok status with the updated object
return(Ok(idea));
}
catch (Exception) // DbUpdateException, DbUpdateConcurrencyException
{
/// Add the error below to the error list and return bad request
gAppConst.Error(ref ErrorsList, $"Server Error. Please Contact Administrator.");
return(BadRequest(ErrorsList));
}
}
[Authorize(gAppConst.AccessPolicies.LevelFour)] /// Done MUST BE TESTED
public async Task <IActionResult> Post([FromBody] gIdea newIdea)
{
try
{
int.TryParse(User.Claims.FirstOrDefault(c => c.Type == "UserId").Value, out int userId);
newIdea.Author = await DbContext.Users.Include(u => u.Role)
.Include(u => u.Department)
.FirstAsync(u => u.Id == userId)
.ConfigureAwait(false);
newIdea.Status = gAppConst.IdeaStatus.Pending;
newIdea.CreatedDate = DateTime.UtcNow;
gClosureDates closureDates = await DbContext.ClosureDates.FindAsync(newIdea.CreatedDate.Year).ConfigureAwait(false);
newIdea.FirstClosureDate = DateTime.UtcNow.AddDays(closureDates.FirstClosure);
newIdea.ClosureDate = DateTime.UtcNow.AddDays(closureDates.FinalClosure);
ModelState.Clear();
/// if model validation failed
if (!TryValidateModel(newIdea))
{
gAppConst.ExtractErrors(ModelState, ref ErrorsList);
/// return bad request with all the errors
return(BadRequest(ErrorsList));
}
/// else department object is made without any errors
/// Add the new department to the EF context
DbContext.Ideas.Add(newIdea);
/// save the changes to the data base
await DbContext.SaveChangesAsync().ConfigureAwait(false);
if (newIdea.Id > 0 && newIdea.CategoryTags.Count() > 0)
{
newIdea.CategoriesToIdeas = new List <gCategoriesToIdeas>();
foreach (var item in newIdea.CategoryTags)
{
newIdea.CategoriesToIdeas.Add(new gCategoriesToIdeas {
CategoryId = item.Id, IdeaId = newIdea.Id
});
}
DbContext.CategoriesToIdeas.AddRange(newIdea.CategoriesToIdeas);
await DbContext.SaveChangesAsync().ConfigureAwait(false);
}
/// return 201 created status with the new object
/// and success message
return(Created("Success", newIdea));
}
catch (Exception ee) // DbUpdateException, DbUpdateConcurrencyException
{
/// Add the error below to the error list and return bad request
gAppConst.Error(ref ErrorsList, "Server Error. Please Contact Administrator.");
return(BadRequest(ErrorsList));
}
}
[Authorize(gAppConst.AccessPolicies.LevelFour)] /// Done MUST BE TESTED
public async Task <IActionResult> Put([FromBody] gIdea modifiedIdea)
{
try
{
/// if the idea record with the same id is not found
if (!DbContext.Ideas.Any(d => d.Id == modifiedIdea.Id))
{
gAppConst.Error(ref ErrorsList, "Idea not found");
return(BadRequest(ErrorsList));
}
/// if the current user is not the author of the idea
int.TryParse(User.Claims.FirstOrDefault(c => c.Type == "UserId").Value, out int userId);
if (!DbContext.Ideas.Any(i => i.Id == modifiedIdea.Id && i.Author.Id != userId))
{
gAppConst.Error(ref ErrorsList, "Not authorised to edit!");
return(BadRequest(ErrorsList));
}
/// Make sure these values cannot be updated
gIdea oldVlaues = DbContext.Ideas.AsNoTracking().FirstOrDefault(i => i.Id == modifiedIdea.Id);
modifiedIdea.Author = oldVlaues.Author;
modifiedIdea.Status = oldVlaues.Status;
modifiedIdea.CreatedDate = oldVlaues.CreatedDate;
modifiedIdea.FirstClosureDate = oldVlaues.FirstClosureDate;
modifiedIdea.ClosureDate = oldVlaues.ClosureDate;
modifiedIdea.IsBlocked = oldVlaues.IsBlocked;
/// Try to validate the model and if it failed
if (!TryValidateModel(modifiedIdea))
{
/// extract the errors and return bad request containing the errors
gAppConst.ExtractErrors(ModelState, ref ErrorsList);
return(BadRequest(ErrorsList));
}
/// else department object has no errors
/// thus update department in the context
DbContext.Ideas.Update(modifiedIdea);
/// save the changes to the database
await DbContext.SaveChangesAsync().ConfigureAwait(false);
/// thus return 200 ok status with the updated object
return(Ok(modifiedIdea));
}
catch (Exception) // DbUpdateException, DbUpdateConcurrencyException
{
/// Add the error below to the error list and return bad request
gAppConst.Error(ref ErrorsList, $"Server Error. Please Contact Administrator.");
return(BadRequest(ErrorsList));
}
}
[Authorize(gAppConst.AccessPolicies.LevelFour)] /// Done
public async Task <IActionResult> Get(int ideaId)
{
try
{
/// find the specified idea
gIdea idea = await DbContext.Ideas.Include(i => i.Author)
.ThenInclude(a => a.Department)
.Include(i => i.Author)
.ThenInclude(a => a.Role)
.Include(i => i.CategoriesToIdeas)
.Include(i => i.Comments)
.ThenInclude(c => c.User)
.Include(i => i.FlaggedIdeas)
.FirstOrDefaultAsync(i => i.Id == ideaId)
.ConfigureAwait(false);
if (idea == null)
{
gAppConst.Error(ref ErrorsList, "Idea not found");
return(BadRequest(ErrorsList));
}
if (idea.Author.IsBlocked)
{
gAppConst.Error(ref ErrorsList, "User is blocked");
return(BadRequest(ErrorsList));
}
if (idea.IsBlocked)
{
gAppConst.Error(ref ErrorsList, "Idea is blocked");
return(BadRequest(ErrorsList));
}
string currentUserAccessClaim = User.Claims.FirstOrDefault(c => c.Type == gAppConst.AccessClaims.Type).Value;
if (idea.IsAnonymous && currentUserAccessClaim.Equals(gAppConst.AccessClaims.Staff))
{
idea.Author = new gUser {
FirstName = "Anonymous", Surname = "Anonymous"
};
idea.FlaggedIdeas = new List <gFlaggedIdea>();
}
idea.TotalThumbDowns = await DbContext.Votes.CountAsync(v => v.Thumb.Equals("Down")).ConfigureAwait(false);
idea.TotalThumbUps = await DbContext.Votes.CountAsync(v => v.Thumb.Equals("Up")).ConfigureAwait(false);
idea.CategoryTags = new List <gCategoryTag>();
foreach (var item in idea.CategoriesToIdeas)
{
idea.CategoryTags.Add(await DbContext.Categories.FindAsync(item.CategoryId).ConfigureAwait(false));
}
foreach (gComment comment in idea.Comments)
{
if (comment.IsAnonymous)
{
comment.User = new gUser {
FirstName = "Anonymous", Surname = "Anonymous", Department = comment.User.Department
}
}
}
;
/// return the idea
return(Ok(idea));
}
catch (Exception)
{
/// in the case any exceptions return the following error
gAppConst.Error(ref ErrorsList, "Server Error. Please Contact Administrator.");
return(BadRequest(ErrorsList));
}
}
