public static LoginStatusResponse IsAdmin(User loginInfo, ManagementSystemDbContext context) { var user = context.Users.FirstOrDefault(user => user.UserName == loginInfo.UserName && user.Password == loginInfo.Password ); LoginStatusResponse loginStatus = new LoginStatusResponse(); //vertify is user admin if (user == null) { loginStatus.Status = 1; loginStatus.Msg = "Incorrect username or password"; return(loginStatus); } var AdminRole = context.Roles.FirstOrDefault(r => r.RoleName == "Admin"); var isAdmin = context.RoleUsers.FirstOrDefault(ru => ru.UserId == user.Id && ru.RoleId == AdminRole.Id); if (isAdmin != null) { loginStatus.User = user; loginStatus.Status = 0; } else { //Need to check which website send the post. loginStatus.Status = 1; loginStatus.Msg = "You don't have permission to access to the Management System"; } return(loginStatus); }
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline. public void Configure(IApplicationBuilder app, IWebHostEnvironment env, ManagementSystemDbContext db) { if (env.IsDevelopment()) { app.UseDeveloperExceptionPage(); } else { app.UseExceptionHandler("/Home/Error"); } db.Database.EnsureCreated(); app.UseStaticFiles(); app.UseRouting(); app.UseAuthorization(); app.UseEndpoints(endpoints => { endpoints.MapControllerRoute( name: "default", pattern: "{controller=Home}/{action=Index}/{id?}"); }); }
public CategoriesController(ManagementSystemDbContext context) { _context = context; }
public JobTitleService(ManagementSystemDbContext context) { _context = context; }
public UsersController(ManagementSystemDbContext context) { _context = context; }
public LoginController(ManagementSystemDbContext context) { _context = context; }
public CommentService(ManagementSystemDbContext context) { _context = context; }
public ProductsController(ManagementSystemDbContext context) { _context = context; }
public DepartmentService(ManagementSystemDbContext context) { _context = context; }
public EmployeeService(ManagementSystemDbContext context) { _context = context; }