public IHttpActionResult Post(FormDataMultiNote note) { IHttpActionResult result = ValidateAdminRequest(); if (result != null) { return(result); } try { using (AdoDataConnection connection = new AdoDataConnection(SettingsCategory)) { DateTime now = DateTime.Now; List <EventNote> records = new List <EventNote>(); foreach (int eventId in note.EventIDs) { EventNote record = new EventNote() { EventID = eventId, Note = note.Note, UserAccount = User.Identity.Name, Timestamp = now }; new TableOperations <EventNote>(connection).AddNewRecord(record); records.Add(record); } result = Ok(records); } } catch (Exception ex) { result = InternalServerError(ex); } return(result); }
public IHttpActionResult Delete(FormDataMultiNote note) { try { IHttpActionResult result = ValidateAdminRequest(); if (result != null) { return(result); } using (AdoDataConnection connection = new AdoDataConnection(SettingsCategory)) { connection.ExecuteNonQuery(@" DELETE FROM EventNote WHERE Note = {0} AND UserAccount = {1} AND Timestamp = {2} ", note.Note, note.UserAccount, note.Timestamp); } return(Ok()); } catch (Exception ex) { return(InternalServerError(ex)); } }