Example #1
        // READ ALL: GET api/notes - list of notes
        public IHttpActionResult Get()
            int start = DateTime.Now.Millisecond;
            Account acc = Acc((ClaimsPrincipal)Thread.CurrentPrincipal);
            Client clt = new Client() { Ip = "", Agent = "Chrome" };

            List<Note> notes;

            switch (acc.Role)
                case "Admin":
                    notes = _notes.GetAll();

                case "User":
                    notes = _notes.GetByUserId(acc.UserId);

                    notes = _notes.GetPublic();

            Log(start, "TRACE", "READ ALL", acc, clt, 200, "Ok");
            return Ok(notes);
Example #2
        public IHttpActionResult Delete(int id)
            int start = DateTime.Now.Millisecond;
            Account acc = Acc((ClaimsPrincipal)Thread.CurrentPrincipal);
            Client clt = new Client() { Ip = "", Agent = "Chrome" };

            Note note = _notes.GetById(id);

            if (note == null)
                Log(start, "DEBUG", "DELETE", acc, clt, 404, "NotFound");
                return NotFound();

            if (note.UserId == acc.UserId || acc.Role == "Admin")

                Log(start, "TRACE", "DELETE", acc, clt, 200, "Ok");
                return Ok();

            Log(start, "WARNING", "DELETE", acc, clt, 400, "Unauthorized");
            return Unauthorized();
Example #3
        public IHttpActionResult Post()
            #region LOGGER: Block for refactoring
            // ======================================================
            // ------------------------------------------------------
            DateTime start = DateTime.Now;
            Client clt = new Client() { Ip = "", Agent = "Chrome" };
            Account acc = new Account() { UserId = 0, Role = null, Login = null };
            ClaimsPrincipal identity = (ClaimsPrincipal)Thread.CurrentPrincipal;

            acc.UserId = Convert.ToInt32(identity.Claims.Where(c => c.Type == "id").Select(c => c.Value).SingleOrDefault());
            acc.Role = identity.Claims.Where(c => c.Type == "role").Select(c => c.Value).SingleOrDefault();
            acc.Login = identity.Claims.Where(c => c.Type == "login").Select(c => c.Value).SingleOrDefault();

            if (acc.Role == null) { acc.Role = "Public"; }
            if (acc.Login == null) { acc.Login = "******"; }

            var text =
                "{\"lvl\":\"TRACE\",\"time\":\"" +
                String.Format("{0:HH:mm:ss.fff}", DateTime.Now).ToString() +
                "\",\"userId\":" + acc.UserId +
                ",\"login\":\"" + acc.Login +
                "\",\"role\":\"" + acc.Role +
                "\",\"act\":\"LOGOUT\",\"ip\":\"" + clt.Ip +
                "\",\"agent\":\"" + clt.Agent +
                "\",\"lag\":" + (DateTime.Now - start).Milliseconds.ToString() +

            Logger log = LogManager.GetCurrentClassLogger();

            // ------------------------------------------------------
            // ======================================================

            return Ok();
Example #4
        private void Log(            
            int start, string lvl, string act,
            Account acc, Client clt,
            int stat, string mes
            string time = String.Format("{0:HH:mm:ss.fff}", DateTime.Now).ToString();
            int lag = (DateTime.Now.Millisecond - start);

            var text =
                "{" +
                "\"lvl\":\"" + lvl + "\"," +
                "\"time\":\"" + time + "\"," +
                "\"userId\":" + acc.UserId.ToString() + "," +
                "\"login\":\"" + acc.Login + "\"," +
                "\"role\":\"" + acc.Role + "\"," +
                "\"act\":\"" + act + "\"," +
                "\"ip\":\"" + clt.Ip + "\"," +
                "\"agent\":\"" + clt.Agent + "\"," +
                "\"lag\":" + lag.ToString() + "," +
                "\"stat\":" + stat.ToString() + "," +
                "\"message\":\"" + mes + "\"" +

            Logger log = LogManager.GetCurrentClassLogger();

Example #5
        public IHttpActionResult Put(int id, NoteUpdateModel data)
            int start = DateTime.Now.Millisecond;
            Account acc = Acc((ClaimsPrincipal)Thread.CurrentPrincipal);
            Client clt = new Client() { Ip = "", Agent = "Chrome" };

            if (!ModelState.IsValid)
                Log(start, "INFO", "UPDATE", acc, clt, 300, "BadRequest");
                return BadRequest(ModelState);

            Note note = _notes.GetById(id);

            if (note == null)
                Log(start, "DEBUG", "UPDATE", acc, clt, 404, "NotFound");
                return NotFound();

            if (note.UserId == acc.UserId || acc.Role == "Admin")
                Note upNote = new Note()
                    Id = id,
                    Publish = data.Publish,
                    Title = data.Title,
                    Body = data.Body


                Log(start, "TRACE", "UPDATE", acc, clt, 200, "Ok");
                return Ok();

            Log(start, "WARNING", "UPDATE", acc, clt, 400, "Unauthorized");
            return Unauthorized();
Example #6
        public IHttpActionResult Post(NoteCreateModel data)
            int start = DateTime.Now.Millisecond;
            Account acc = Acc((ClaimsPrincipal)Thread.CurrentPrincipal);
            Client clt = new Client() { Ip = "", Agent = "Chrome" };

            if (!ModelState.IsValid)
                Log( start, "INFO", "CREATE", acc, clt, 300, "BadRequest" );
                return BadRequest(ModelState);

            // May add a check: Claims.userId == data.UserId

            Note note = new Note()
                // data from client
                UserId = data.UserId,
                Publish = data.Publish,
                Title = data.Title,
                Body = data.Body,
                // server data
                CreateTime = DateTime.UtcNow

            int? id = _notes.Create(note);

            if (id == null)
                Log(start, "ERROR", "CREATE", acc, clt, 400, "Exception");
                return BadRequest(); // need change to Exception(e)

            Log(start, "TRACE", "CREATE", acc, clt, 200, "Ok");
            return Ok(id);