public void UpdateGroup(string id, Rock.Groups.DTO.Group Group)
{
var currentUser = Rock.CMS.UserService.GetCurrentUser();
if (currentUser == null)
{
throw new WebFaultException <string>("Must be logged in", System.Net.HttpStatusCode.Forbidden);
}
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Groups.GroupService GroupService = new Rock.Groups.GroupService();
Rock.Groups.Group existingGroup = GroupService.Get(int.Parse(id));
if (existingGroup.Authorized("Edit", currentUser))
{
uow.objectContext.Entry(existingGroup).CurrentValues.SetValues(Group);
if (existingGroup.IsValid)
{
GroupService.Save(existingGroup, currentUser.PersonId);
}
else
{
throw new WebFaultException <string>(existingGroup.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest);
}
}
else
{
throw new WebFaultException <string>("Not Authorized to Edit this Group", System.Net.HttpStatusCode.Forbidden);
}
}
}
public Rock.Groups.DTO.Group ApiGet(string id, string apiKey)
{
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
Rock.CMS.UserService userService = new Rock.CMS.UserService();
Rock.CMS.User user = userService.Queryable().Where(u => u.ApiKey == apiKey).FirstOrDefault();
if (user != null)
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Groups.GroupService GroupService = new Rock.Groups.GroupService();
Rock.Groups.Group Group = GroupService.Get(int.Parse(id));
if (Group.Authorized("View", user))
{
return(Group.DataTransferObject);
}
else
{
throw new WebFaultException <string>("Not Authorized to View this Group", System.Net.HttpStatusCode.Forbidden);
}
}
else
{
throw new WebFaultException <string>("Invalid API Key", System.Net.HttpStatusCode.Forbidden);
}
}
}
public void ApiDeleteGroup(string id, string apiKey)
{
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
Rock.CMS.UserService userService = new Rock.CMS.UserService();
Rock.CMS.User user = userService.Queryable().Where(u => u.ApiKey == apiKey).FirstOrDefault();
if (user != null)
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Groups.GroupService GroupService = new Rock.Groups.GroupService();
Rock.Groups.Group Group = GroupService.Get(int.Parse(id));
if (Group.Authorized("Edit", user))
{
GroupService.Delete(Group, user.PersonId);
GroupService.Save(Group, user.PersonId);
}
else
{
throw new WebFaultException <string>("Not Authorized to Edit this Group", System.Net.HttpStatusCode.Forbidden);
}
}
else
{
throw new WebFaultException <string>("Invalid API Key", System.Net.HttpStatusCode.Forbidden);
}
}
}
public void DeleteGroup(string id)
{
var currentUser = Rock.CMS.UserService.GetCurrentUser();
if (currentUser == null)
{
throw new WebFaultException <string>("Must be logged in", System.Net.HttpStatusCode.Forbidden);
}
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Groups.GroupService GroupService = new Rock.Groups.GroupService();
Rock.Groups.Group Group = GroupService.Get(int.Parse(id));
if (Group.Authorized("Edit", currentUser))
{
GroupService.Delete(Group, currentUser.PersonId);
GroupService.Save(Group, currentUser.PersonId);
}
else
{
throw new WebFaultException <string>("Not Authorized to Edit this Group", System.Net.HttpStatusCode.Forbidden);
}
}
}
public Rock.Groups.DTO.Group Get(string id)
{
var currentUser = Rock.CMS.UserService.GetCurrentUser();
if (currentUser == null)
{
throw new WebFaultException <string>("Must be logged in", System.Net.HttpStatusCode.Forbidden);
}
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Groups.GroupService GroupService = new Rock.Groups.GroupService();
Rock.Groups.Group Group = GroupService.Get(int.Parse(id));
if (Group.Authorized("View", currentUser))
{
return(Group.DataTransferObject);
}
else
{
throw new WebFaultException <string>("Not Authorized to View this Group", System.Net.HttpStatusCode.Forbidden);
}
}
}
public void ApiUpdateGroup(string id, string apiKey, Rock.Groups.DTO.Group Group)
{
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
Rock.CMS.UserService userService = new Rock.CMS.UserService();
Rock.CMS.User user = userService.Queryable().Where(u => u.ApiKey == apiKey).FirstOrDefault();
if (user != null)
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Groups.GroupService GroupService = new Rock.Groups.GroupService();
Rock.Groups.Group existingGroup = GroupService.Get(int.Parse(id));
if (existingGroup.Authorized("Edit", user))
{
uow.objectContext.Entry(existingGroup).CurrentValues.SetValues(Group);
if (existingGroup.IsValid)
{
GroupService.Save(existingGroup, user.PersonId);
}
else
{
throw new WebFaultException <string>(existingGroup.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest);
}
}
else
{
throw new WebFaultException <string>("Not Authorized to Edit this Group", System.Net.HttpStatusCode.Forbidden);
}
}
else
{
throw new WebFaultException <string>("Invalid API Key", System.Net.HttpStatusCode.Forbidden);
}
}
}
