public HttpResponseMessage GetNewsletter(int newsletterId)
{
HttpResponseMessage response = new HttpResponseMessage(HttpStatusCode.OK);
UserPrincipal loggedInUser = (UserPrincipal)HttpContext.Current.User;
response.Content = new ObjectContent <NewsletterModel>
(NewsletterModel.MapNewsletterModel(NewsletterAdminBLL.GetNewsletter(newsletterId, loggedInUser.AccountSession.ClubId)),
new JsonMediaTypeFormatter());
return(response);
}
public HttpResponseMessage DeleteNewsletter(int newsletterId)
{
HttpResponseMessage response = new HttpResponseMessage(HttpStatusCode.OK);
UserPrincipal loggedInUser = (UserPrincipal)HttpContext.Current.User;
var newsletter = NewsletterAdminBLL.GetNewsletter(newsletterId, loggedInUser.AccountSession.ClubId);
if (newsletter != null && newsletter.ClubId == loggedInUser.AccountSession.ClubId)
{
NewsletterAdminBLL.DeleteNewsletter(newsletter);
}
else
{
LogHelper.LogWarn(string.Format("UserId: {0} trying to delete a newsletter outside of the club, newsletter: {1}",
loggedInUser.AccountSession.AccountId, newsletterId), null, loggedInUser.AccountSession.ClubId);
response.StatusCode = HttpStatusCode.Forbidden;
}
return(response);
}
