public IActionResult AddMyPlaces(Model.Place place)
{
var userId = new Guid(this.User.FindFirstValue(ClaimTypes.NameIdentifier));
var entity = new Entity.Place(place.Latitude, place.Longitude, place.Note, userId);
_dbContext.Places.Add(entity);
_dbContext.SaveChanges();
var result = new JsonResult(new Model.Place(entity));
result.StatusCode = 201;
return(result);
}
public IActionResult UpdateMyPlaces(int id, Model.Place place)
{
// TODO: Concurrency.
var userId = new Guid(this.User.FindFirstValue(ClaimTypes.NameIdentifier));
var entity = _dbContext.Places.Find(id);
// Only admins can update other users places.
if (!IsAllowed(entity))
{
return(new UnauthorizedResult());
}
entity.Lat = place.Latitude;
entity.Lng = place.Longitude;
entity.Note = place.Note;
entity.UpdatedById = userId;
entity.UpdatedOn = DateTime.UtcNow;
_dbContext.SaveChanges();
return(new JsonResult(new Model.Place(entity)));
}
