public void ApiDeleteNote( string id, string apiKey ) { using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() ) { Rock.CMS.UserService userService = new Rock.CMS.UserService(); Rock.CMS.User user = userService.Queryable().Where( u => u.ApiKey == apiKey ).FirstOrDefault(); if (user != null) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.Core.NoteService NoteService = new Rock.Core.NoteService(); Rock.Core.Note Note = NoteService.Get( int.Parse( id ) ); if ( Note.Authorized( "Edit", user ) ) { NoteService.Delete( Note, user.PersonId ); NoteService.Save( Note, user.PersonId ); } else throw new WebFaultException<string>( "Not Authorized to Edit this Note", System.Net.HttpStatusCode.Forbidden ); } else throw new WebFaultException<string>( "Invalid API Key", System.Net.HttpStatusCode.Forbidden ); } }
public Rock.Core.DTO.Note ApiGet( string id, string apiKey ) { using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope()) { Rock.CMS.UserService userService = new Rock.CMS.UserService(); Rock.CMS.User user = userService.Queryable().Where( u => u.ApiKey == apiKey ).FirstOrDefault(); if (user != null) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.Core.NoteService NoteService = new Rock.Core.NoteService(); Rock.Core.Note Note = NoteService.Get( int.Parse( id ) ); if ( Note.Authorized( "View", user ) ) return Note.DataTransferObject; else throw new WebFaultException<string>( "Not Authorized to View this Note", System.Net.HttpStatusCode.Forbidden ); } else throw new WebFaultException<string>( "Invalid API Key", System.Net.HttpStatusCode.Forbidden ); } }
public void UpdateNote( string id, Rock.Core.DTO.Note Note ) { var currentUser = Rock.CMS.UserService.GetCurrentUser(); if ( currentUser == null ) throw new WebFaultException<string>("Must be logged in", System.Net.HttpStatusCode.Forbidden ); using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() ) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.Core.NoteService NoteService = new Rock.Core.NoteService(); Rock.Core.Note existingNote = NoteService.Get( int.Parse( id ) ); if ( existingNote.Authorized( "Edit", currentUser ) ) { uow.objectContext.Entry(existingNote).CurrentValues.SetValues(Note); if (existingNote.IsValid) NoteService.Save( existingNote, currentUser.PersonId ); else throw new WebFaultException<string>( existingNote.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest ); } else throw new WebFaultException<string>( "Not Authorized to Edit this Note", System.Net.HttpStatusCode.Forbidden ); } }
public Rock.Core.DTO.Note Get( string id ) { var currentUser = Rock.CMS.UserService.GetCurrentUser(); if ( currentUser == null ) throw new WebFaultException<string>("Must be logged in", System.Net.HttpStatusCode.Forbidden ); using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope()) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.Core.NoteService NoteService = new Rock.Core.NoteService(); Rock.Core.Note Note = NoteService.Get( int.Parse( id ) ); if ( Note.Authorized( "View", currentUser ) ) return Note.DataTransferObject; else throw new WebFaultException<string>( "Not Authorized to View this Note", System.Net.HttpStatusCode.Forbidden ); } }
public void DeleteNote( string id ) { var currentUser = Rock.CMS.UserService.GetCurrentUser(); if ( currentUser == null ) throw new WebFaultException<string>("Must be logged in", System.Net.HttpStatusCode.Forbidden ); using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() ) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.Core.NoteService NoteService = new Rock.Core.NoteService(); Rock.Core.Note Note = NoteService.Get( int.Parse( id ) ); if ( Note.Authorized( "Edit", currentUser ) ) { NoteService.Delete( Note, currentUser.PersonId ); NoteService.Save( Note, currentUser.PersonId ); } else throw new WebFaultException<string>( "Not Authorized to Edit this Note", System.Net.HttpStatusCode.Forbidden ); } }
public void ApiUpdateNote( string id, string apiKey, Rock.Core.DTO.Note Note ) { using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() ) { Rock.CMS.UserService userService = new Rock.CMS.UserService(); Rock.CMS.User user = userService.Queryable().Where( u => u.ApiKey == apiKey ).FirstOrDefault(); if (user != null) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.Core.NoteService NoteService = new Rock.Core.NoteService(); Rock.Core.Note existingNote = NoteService.Get( int.Parse( id ) ); if ( existingNote.Authorized( "Edit", user ) ) { uow.objectContext.Entry(existingNote).CurrentValues.SetValues(Note); if (existingNote.IsValid) NoteService.Save( existingNote, user.PersonId ); else throw new WebFaultException<string>( existingNote.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest ); } else throw new WebFaultException<string>( "Not Authorized to Edit this Note", System.Net.HttpStatusCode.Forbidden ); } else throw new WebFaultException<string>( "Invalid API Key", System.Net.HttpStatusCode.Forbidden ); } }