public ActionResult CreateAsGuest(GuestCodeModel model) { if (ModelState.IsValid) { var db = new CodeItDbContext(); db.GuestCodes.Add(model); db.SaveChanges(); return(RedirectToAction("GuestCodeDetails", new { id = model.Id })); } return(View(model)); }
//[ValidateInput(false)] public ActionResult GuestEdit(GuestCodeModel model) { if (ModelState.IsValid) { using (var db = new CodeItDbContext()) { var code = db.GuestCodes.Find(model.Id); if (code == null || !this.User.IsInRole("Admin")) { return(HttpNotFound()); } code.CodeTitle = model.CodeTitle; code.CodeContent = model.CodeContent; db.SaveChanges(); } return(RedirectToAction("GuestCodeDetails", new { id = model.Id })); } return(View(model)); }