private void PopulateViewEditAccess(ref List <KeyValuePair <int, KeyValuePair <bool, bool> > > ViewEditColl) { string StateFIPS = userProfileViewData.StateFIPS; foreach (UserRegionalAccessProfile profile in userProfileViewData.RegionalProfiles) { if (userProfileViewData.IsUserAgencyScope) { var CanView = AccessRulesBLL.CanViewAgencyUser(profile.RegionId, profile.IsAdmin, StateFIPS, AdminViewData); var CanEdit = AccessRulesBLL.CanEditAgencyUser(profile.RegionId, profile.IsAdmin, StateFIPS, profile.IsApproverDesignate, AdminViewData); ViewEditColl.Add(new KeyValuePair <int, KeyValuePair <bool, bool> >(profile.RegionId, new KeyValuePair <bool, bool>(CanView, CanEdit))); } else if (userProfileViewData.IsUserSubStateRegionalScope) { var CanView = AccessRulesBLL.CanViewSubStateUser(profile.RegionId, profile.IsAdmin, StateFIPS, AdminViewData); var CanEdit = AccessRulesBLL.CanEditSubStateUser(profile.RegionId, profile.IsAdmin, StateFIPS, profile.IsApproverDesignate, AdminViewData); ViewEditColl.Add(new KeyValuePair <int, KeyValuePair <bool, bool> >(profile.RegionId, new KeyValuePair <bool, bool>(CanView, CanEdit))); } else if (userProfileViewData.IsUserCMSRegionalScope) { var CanView = AccessRulesBLL.CanViewUserProfile(userProfileViewData, AdminViewData); var CanEdit = AccessRulesBLL.CanEditUserProfile(userProfileViewData, AdminViewData); ViewEditColl.Add(new KeyValuePair <int, KeyValuePair <bool, bool> >(profile.RegionId, new KeyValuePair <bool, bool>(CanView, CanEdit))); } } }
protected bool IsEditAccessAllowed() { //While User is visiting his own profile, deny edit, else check for access rights if (UserProfileUserId != this.AccountInfo.UserId) { return(AccessRulesBLL.CanEditUserProfile(userProfileViewData, AdminViewData)); } return(false); }
private bool IsDataValid() { bool IsValid = false; bool IsApproverDesignateChecked = false; IValidator approverError = formView.FindControl("cvIsApproverError") as CustomValidator; IValidator adminError = formView.FindControl("cvIsAdminError") as CustomValidator; CheckBox approverCheckbox = formView.FindControl("cbIsApprover") as CheckBox; CheckBox IsAdminCheckbox = formView.FindControl("cbIsAdmin") as CheckBox; if (approverCheckbox != null) { IsApproverDesignateChecked = approverCheckbox.Checked; } if (IsApproverDesignateChecked && !IsAdminCheckbox.Checked) { IsValid = false; approverError.ErrorMessage = "Only Admins can be approvers. The role must be an administrator role"; approverError.IsValid = IsValid; } else { var SubStatesDDL = formView.FindControl("ddlSubStates") as DropDownList; if (SubStatesDDL.SelectedValue != "0") { if (!AccessRulesBLL.CanAddUserToSubState(AdminUserData, UserData.StateFIPS, GetSelectedSubStateRegionId(), IsAdminCheckbox.Checked, IsApproverDesignateChecked)) { IsValid = false; if (IsAdminCheckbox.Checked) { if (IsApproverDesignateChecked) { approverError.ErrorMessage = "You are not an approver in the chosen sub state. You cannot make another person an approver in the sub state."; approverError.IsValid = IsValid; } else { adminError.ErrorMessage = "You are not authorized to create an admin user account in the chosen sub state."; adminError.IsValid = IsValid; } } } else { IsValid = true; } } } return(IsValid); }
private bool IsAuthorized() { //return AccessRulesBLL.CheckReadOnlyAccess(this.AccountInfo, UserData); bool AuthResult = AccessRulesBLL.CanViewSubStateUser(UserSubStateRegionData.RegionId, UserSubStateRegionData.IsAdmin, UserData.StateFIPS, ViewerUserData); if (!AuthResult) { ShiptalkException.ThrowSecurityException(string.Format("Access denied. User :{0} cannot view {1}.", this.AccountInfo.UserId, UserData.UserId), "You are not authorized to view the User information."); } return(AuthResult); }
protected bool IsEditAccessAllowed(int RegionId) { bool IsAllowed = false; //return AccessRulesBLL.CanEditUserProfile(this.userProfileViewData, UserBLL.GetUser(this.AccountInfo.UserId)); if (userProfileViewData.IsUserSubStateRegionalScope) { UserRegionalAccessProfile subStateProfile = userProfileViewData.RegionalProfiles.Where(p => p.RegionId == RegionId).FirstOrDefault(); if (subStateProfile != null) { IsAllowed = AccessRulesBLL.CanEditSubStateUser(subStateProfile.RegionId, subStateProfile.IsAdmin, userProfileViewData.StateFIPS, subStateProfile.IsApproverDesignate, AdminViewData); } } else if (userProfileViewData.IsUserAgencyScope) { UserRegionalAccessProfile AgencyProfile = userProfileViewData.RegionalProfiles.Where(p => p.RegionId == RegionId).FirstOrDefault(); if (AgencyProfile != null) { IsAllowed = AccessRulesBLL.CanEditAgencyUser(AgencyProfile.RegionId, AgencyProfile.IsAdmin, userProfileViewData.StateFIPS, AgencyProfile.IsApproverDesignate, AdminViewData); } } else if (userProfileViewData.IsUserCMSRegionalScope) { UserRegionalAccessProfile CMSRegionalProfile = userProfileViewData.RegionalProfiles.Where(p => p.RegionId == RegionId).FirstOrDefault(); if (CMSRegionalProfile != null) { IsAllowed = AccessRulesBLL.CanEditUserProfile(userProfileViewData, AdminViewData); } } return(IsAllowed); }
private IEnumerable <UserRegionalAccessProfile> GetEditableProfiles() { List <UserRegionalAccessProfile> editableProfiles = new List <UserRegionalAccessProfile>(); foreach (UserRegionalAccessProfile profile in UserData.RegionalProfiles) { if (UserData.Scope.IsEqual(Scope.SubStateRegion)) { if (AccessRulesBLL.CanEditSubStateUser(profile.RegionId, profile.IsAdmin, UserData.StateFIPS, profile.IsApproverDesignate, AdminViewData)) { editableProfiles.Add(profile); } } else if (UserData.Scope.IsEqual(Scope.Agency)) { if (AccessRulesBLL.CanEditAgencyUser(profile.RegionId, profile.IsAdmin, UserData.StateFIPS, profile.IsApproverDesignate, AdminViewData)) { editableProfiles.Add(profile); } } else if (UserData.Scope.IsEqual(Scope.CMSRegional)) { if (AccessRulesBLL.CanEditUserProfile(UserData, AdminViewData)) { editableProfiles.Add(profile); } } } if (editableProfiles == null || editableProfiles.Count == 0) { return(null); } else { return(editableProfiles); } }
private bool IsAuthorized() { return(AccessRulesBLL.CanViewUserProfile(userProfileViewData, ViewerUserData)); //return AccessRulesBLL.CheckReadOnlyAccess(this.AccountInfo, this.userProfileViewData); }
public bool IsAuthorized() { //Get ViewData Of Logged In User if User is potential multi regional user[Agency/SubState]. return(AccessRulesBLL.CanEditUserProfile(UserData, AdminViewData)); }