public HttpResponseMessage ToggleSecurity(ToggleSecurityDTO dto) { var db = new Data.Common(); var sb = new StringBuilder(); switch (dto.Action) { case "delete": { Permissions.RemoveObjectFromAll(dto.SecurityId, dto.SecurityType, dto.PermissionsId); return(Request.CreateResponse(HttpStatusCode.OK)); } case "addobject": { if (dto.SecurityType == 1) { var uc = new UserController(); var ui = uc.GetUser(PortalSettings.PortalId, dto.ModuleId, dto.SecurityId); dto.SecurityId = ui != null?ui.UserId.ToString() : string.Empty; } else { if (dto.SecurityId.Contains(":")) { dto.SecurityType = 2; } } if (!(string.IsNullOrEmpty(dto.SecurityId))) { var permSet = db.GetPermSet(dto.PermissionsId, "View"); permSet = Permissions.AddPermToSet(dto.SecurityId, dto.SecurityType, permSet); db.SavePermSet(dto.PermissionsId, "View", permSet); } return(Request.CreateResponse(HttpStatusCode.OK)); } default: { var permSet = db.GetPermSet(dto.PermissionsId, dto.SecurityKey); if (dto.Action == "remove") { permSet = Permissions.RemovePermFromSet(dto.SecurityId, dto.SecurityType, permSet); } else { permSet = Permissions.AddPermToSet(dto.SecurityId, dto.SecurityType, permSet); } db.SavePermSet(dto.PermissionsId, dto.SecurityKey, permSet); return(Request.CreateResponse(HttpStatusCode.OK, dto.Action + "|" + dto.ReturnId)); } } }
public HttpResponseMessage ToggleSecurity(ToggleSecurityDTO dto) { var db = new Data.Common(); var sb = new StringBuilder(); switch (dto.Action) { case "delete": { Permissions.RemoveObjectFromAll(dto.SecurityId, dto.SecurityType, dto.PermissionsId); return Request.CreateResponse(HttpStatusCode.OK); } case "addobject": { if (dto.SecurityType == 1) { var uc = new UserController(); var ui = uc.GetUser(PortalSettings.PortalId, dto.ModuleId, dto.SecurityId); dto.SecurityId = ui != null ? ui.UserId.ToString() : string.Empty; } else { if (dto.SecurityId.Contains(":")) dto.SecurityType = 2; } if (!(string.IsNullOrEmpty(dto.SecurityId))) { var permSet = db.GetPermSet(dto.PermissionsId, "View"); permSet = Permissions.AddPermToSet(dto.SecurityId, dto.SecurityType, permSet); db.SavePermSet(dto.PermissionsId, "View", permSet); } return Request.CreateResponse(HttpStatusCode.OK); } default: { var permSet = db.GetPermSet(dto.PermissionsId, dto.SecurityKey); if (dto.Action == "remove") permSet = Permissions.RemovePermFromSet(dto.SecurityId, dto.SecurityType, permSet); else permSet = Permissions.AddPermToSet(dto.SecurityId, dto.SecurityType, permSet); db.SavePermSet(dto.PermissionsId, dto.SecurityKey, permSet); return Request.CreateResponse(HttpStatusCode.OK, dto.Action + "|" + dto.ReturnId); } } }