/// <summary>
/// Deletes a record from the database.
/// </summary>
/// <param name="id">ID of review needing to be deleted</param>
/// <returns>Returns a result based on status</returns>
public ActionResult DeleteReview(int id)
{
ActionResult response;
//check if logged in
if (Session["RoleID"] != null)
{
//if logged in, check id
if (id > 0)
{
//if id is valid, access database
try
{
//pull review data
ReviewDO reviewDO = _ReviewDataAccess.ViewReviewByID(id);
//check permissions
if (Session["UserID"] != null && (int)Session["UserID"] == reviewDO.UserID || (int)Session["RoleID"] == 6)
{
//if allowed, map, then run data access method
ReviewPO reviewPO = _ReviewMapper.MapDOtoPO(reviewDO);
_ReviewDataAccess.DeleteReview(reviewPO.ReviewID);
response = RedirectToAction("Index", "Review");
}
else
{
//if not allowed, redirect to login page
response = RedirectToAction("Login", "Account");
}
}
catch (Exception ex)
{
//log error
_Logger.ErrorLog(MethodBase.GetCurrentMethod().DeclaringType.Name, MethodBase.GetCurrentMethod().Name, ex);
response = RedirectToAction("Error", "Home");
}
finally { }
}
else
{
//if id is invalid, redirect to details
response = RedirectToAction("ReviewDetails", "Review");
}
}
else
{
//if not logged in, redirect to login page
response = RedirectToAction("Login", "Account");
}
return(response);
}
public bool DeleteReview(int reviewId)
{
// create new instance of ReviewDAO
ReviewDAO dataService = new ReviewDAO();
if (dataService.DeleteReview(reviewId))
{
return(true);
}
else
{
return(false);
}
}
