private void PopulateViewEditAccess(ref List <KeyValuePair <int, KeyValuePair <bool, bool> > > ViewEditColl)
{
string StateFIPS = userProfileViewData.StateFIPS;
foreach (UserRegionalAccessProfile profile in userProfileViewData.RegionalProfiles)
{
if (userProfileViewData.IsUserAgencyScope)
{
var CanView = AccessRulesBLL.CanViewAgencyUser(profile.RegionId, profile.IsAdmin, StateFIPS, AdminViewData);
var CanEdit = AccessRulesBLL.CanEditAgencyUser(profile.RegionId, profile.IsAdmin, StateFIPS, profile.IsApproverDesignate, AdminViewData);
ViewEditColl.Add(new KeyValuePair <int, KeyValuePair <bool, bool> >(profile.RegionId, new KeyValuePair <bool, bool>(CanView, CanEdit)));
}
else if (userProfileViewData.IsUserSubStateRegionalScope)
{
var CanView = AccessRulesBLL.CanViewSubStateUser(profile.RegionId, profile.IsAdmin, StateFIPS, AdminViewData);
var CanEdit = AccessRulesBLL.CanEditSubStateUser(profile.RegionId, profile.IsAdmin, StateFIPS, profile.IsApproverDesignate, AdminViewData);
ViewEditColl.Add(new KeyValuePair <int, KeyValuePair <bool, bool> >(profile.RegionId, new KeyValuePair <bool, bool>(CanView, CanEdit)));
}
else if (userProfileViewData.IsUserCMSRegionalScope)
{
var CanView = AccessRulesBLL.CanViewUserProfile(userProfileViewData, AdminViewData);
var CanEdit = AccessRulesBLL.CanEditUserProfile(userProfileViewData, AdminViewData);
ViewEditColl.Add(new KeyValuePair <int, KeyValuePair <bool, bool> >(profile.RegionId, new KeyValuePair <bool, bool>(CanView, CanEdit)));
}
}
}
protected bool IsEditAccessAllowed()
{
//While User is visiting his own profile, deny edit, else check for access rights
if (UserProfileUserId != this.AccountInfo.UserId)
{
return(AccessRulesBLL.CanEditUserProfile(userProfileViewData, AdminViewData));
}
return(false);
}
private bool IsDataValid()
{
bool IsValid = false;
bool IsApproverDesignateChecked = false;
IValidator approverError = formView.FindControl("cvIsApproverError") as CustomValidator;
IValidator adminError = formView.FindControl("cvIsAdminError") as CustomValidator;
CheckBox approverCheckbox = formView.FindControl("cbIsApprover") as CheckBox;
CheckBox IsAdminCheckbox = formView.FindControl("cbIsAdmin") as CheckBox;
if (approverCheckbox != null)
{
IsApproverDesignateChecked = approverCheckbox.Checked;
}
if (IsApproverDesignateChecked && !IsAdminCheckbox.Checked)
{
IsValid = false;
approverError.ErrorMessage = "Only Admins can be approvers. The role must be an administrator role";
approverError.IsValid = IsValid;
}
else
{
var SubStatesDDL = formView.FindControl("ddlSubStates") as DropDownList;
if (SubStatesDDL.SelectedValue != "0")
{
if (!AccessRulesBLL.CanAddUserToSubState(AdminUserData, UserData.StateFIPS, GetSelectedSubStateRegionId(), IsAdminCheckbox.Checked, IsApproverDesignateChecked))
{
IsValid = false;
if (IsAdminCheckbox.Checked)
{
if (IsApproverDesignateChecked)
{
approverError.ErrorMessage = "You are not an approver in the chosen sub state. You cannot make another person an approver in the sub state.";
approverError.IsValid = IsValid;
}
else
{
adminError.ErrorMessage = "You are not authorized to create an admin user account in the chosen sub state.";
adminError.IsValid = IsValid;
}
}
}
else
{
IsValid = true;
}
}
}
return(IsValid);
}
private bool IsAuthorized()
{
//return AccessRulesBLL.CheckReadOnlyAccess(this.AccountInfo, UserData);
bool AuthResult = AccessRulesBLL.CanViewSubStateUser(UserSubStateRegionData.RegionId, UserSubStateRegionData.IsAdmin, UserData.StateFIPS, ViewerUserData);
if (!AuthResult)
{
ShiptalkException.ThrowSecurityException(string.Format("Access denied. User :{0} cannot view {1}.", this.AccountInfo.UserId, UserData.UserId), "You are not authorized to view the User information.");
}
return(AuthResult);
}
protected bool IsEditAccessAllowed(int RegionId)
{
bool IsAllowed = false;
//return AccessRulesBLL.CanEditUserProfile(this.userProfileViewData, UserBLL.GetUser(this.AccountInfo.UserId));
if (userProfileViewData.IsUserSubStateRegionalScope)
{
UserRegionalAccessProfile subStateProfile = userProfileViewData.RegionalProfiles.Where(p => p.RegionId == RegionId).FirstOrDefault();
if (subStateProfile != null)
{
IsAllowed = AccessRulesBLL.CanEditSubStateUser(subStateProfile.RegionId,
subStateProfile.IsAdmin,
userProfileViewData.StateFIPS,
subStateProfile.IsApproverDesignate,
AdminViewData);
}
}
else if (userProfileViewData.IsUserAgencyScope)
{
UserRegionalAccessProfile AgencyProfile = userProfileViewData.RegionalProfiles.Where(p => p.RegionId == RegionId).FirstOrDefault();
if (AgencyProfile != null)
{
IsAllowed = AccessRulesBLL.CanEditAgencyUser(AgencyProfile.RegionId,
AgencyProfile.IsAdmin,
userProfileViewData.StateFIPS,
AgencyProfile.IsApproverDesignate,
AdminViewData);
}
}
else if (userProfileViewData.IsUserCMSRegionalScope)
{
UserRegionalAccessProfile CMSRegionalProfile = userProfileViewData.RegionalProfiles.Where(p => p.RegionId == RegionId).FirstOrDefault();
if (CMSRegionalProfile != null)
{
IsAllowed = AccessRulesBLL.CanEditUserProfile(userProfileViewData, AdminViewData);
}
}
return(IsAllowed);
}
private IEnumerable <UserRegionalAccessProfile> GetEditableProfiles()
{
List <UserRegionalAccessProfile> editableProfiles = new List <UserRegionalAccessProfile>();
foreach (UserRegionalAccessProfile profile in UserData.RegionalProfiles)
{
if (UserData.Scope.IsEqual(Scope.SubStateRegion))
{
if (AccessRulesBLL.CanEditSubStateUser(profile.RegionId, profile.IsAdmin, UserData.StateFIPS, profile.IsApproverDesignate, AdminViewData))
{
editableProfiles.Add(profile);
}
}
else if (UserData.Scope.IsEqual(Scope.Agency))
{
if (AccessRulesBLL.CanEditAgencyUser(profile.RegionId, profile.IsAdmin, UserData.StateFIPS, profile.IsApproverDesignate, AdminViewData))
{
editableProfiles.Add(profile);
}
}
else if (UserData.Scope.IsEqual(Scope.CMSRegional))
{
if (AccessRulesBLL.CanEditUserProfile(UserData, AdminViewData))
{
editableProfiles.Add(profile);
}
}
}
if (editableProfiles == null || editableProfiles.Count == 0)
{
return(null);
}
else
{
return(editableProfiles);
}
}
private bool IsAuthorized()
{
return(AccessRulesBLL.CanViewUserProfile(userProfileViewData, ViewerUserData));
//return AccessRulesBLL.CheckReadOnlyAccess(this.AccountInfo, this.userProfileViewData);
}
public bool IsAuthorized()
{
//Get ViewData Of Logged In User if User is potential multi regional user[Agency/SubState].
return(AccessRulesBLL.CanEditUserProfile(UserData, AdminViewData));
}
