public ActionResult UserNoteDetails(string user, int noteID)
{
if (!(Roles.IsUserInRole("Administrator") || Roles.IsUserInRole("Job Coach") || Roles.IsUserInRole("Parent")))
{
Response.Redirect("~/Unauthorized");
return(View());
}
if (!(Roles.IsUserInRole("Administrator") && !accountHelper.isThisUserUsersJobCoach(user) && !accountHelper.isThisUserUsersParent(user)))
{
Response.Redirect("~/Unauthorized");
return(View());
}
Note note = helper.getNote(noteID);
if (note == null)
{
return(HttpNotFound());
}
if (!helper.createdByUser(note, user))
{
return(HttpNotFound());
}
if (!helper.isUserNote(note))
{
return(HttpNotFound());
}
ViewData["user"] = user;
return(View(note));
}
