public ActionResult Details(int id = 0) { Plan plan = Request<Plan>.GetItemByID(id, "A", "B"); PlanWithUser planwu = new PlanWithUser(plan, Request<User>.GetUserByID(plan.userID, "A", "B")); if (plan == null) { return HttpNotFound(); } if (webSecurity.CurrentUser.IsInRole("Advisor") || plan.userID == webSecurity.CurrentUserId) { var semesterList = Request<Semester>.GetAll("A", "B").Where(s => s.ID > plan.semesterID); ViewBag.semesterID = new SelectList(semesterList.AsEnumerable(), "ID", "semesterName"); return View(planwu); } else { return HttpNotFound(); } }
public ActionResult Delete(int id = 0) { Plan plan = Request<Plan>.GetItemByID(id, "A", "B"); PlanWithUser planwu = new PlanWithUser(plan, Request<User>.GetUserByID(plan.userID, "A", "B")); if (plan == null) { return HttpNotFound(); } if (webSecurity.CurrentUser.IsInRole("Advisor") || plan.userID == webSecurity.CurrentUserId) { return View(planwu); } else { return HttpNotFound(); } }