public List <automationScript> GetAll([FromBody] string value) { //Get the information from the application List <automationScript> returnValue = new List <automationScript>(); try { using (var ctx = new PamProjectEntities2()) { GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value); //Is session active? var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>(); if (userSession.expireTime >= DateTime.Now) { //Return Json List of users List <automationScript> automationList = new List <automationScript>(); automationList = ctx.Database.SqlQuery <automationScript>("SELECT * FROM automationScript WHERE serverOsId = " + postUser.Id + ";").ToList(); returnValue = automationList; } } } catch (Exception) { //returnValue = "Failed! - Exception - " + e; } return(returnValue); }
public string Delete([FromBody] string value) { // check if the user is logged in and session is valid string returnValue = "fail"; try { using (var ctx = new PamProjectEntities2()) { GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value); //Is session active? var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>(); if (userSession.expireTime >= DateTime.Now) { // check the user has permissions to add a user (Admin only) var accessUser = ctx.users.SqlQuery("SELECT * FROM users WHERE userId LIKE '" + userSession.userId + "';").FirstOrDefault <user>(); if (accessUser.permissionLevelId == 1 || accessUser.permissionLevelId == 2) { // if both yes then run sql delete command on the ID passed into the controller. ctx.Database.ExecuteSqlCommand("DELETE FROM serverAccessLevel WHERE serverAccessId = " + postUser.Id + ";"); returnValue = "Pass!"; } } } } catch (Exception e) { returnValue = "Failed! - Exception - " + e; } return(returnValue); }
public ServerNoInher Get([FromBody] string value) { //Get the information from the application Get all access for a user. ServerNoInher returnValue = new ServerNoInher(); try { using (var ctx = new PamProjectEntities2()) { GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value); //Is session active? var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>(); if (userSession.expireTime >= DateTime.Now) { //Return //List<ServerNoInher> levelList = new List<ServerNoInher>(); //levelList = ctx.Database.SqlQuery<ServerNoInher>("SELECT * FROM server WHERE serverId = " + postUser.Id + ";").ToList(); //returnValue = JsonConvert.SerializeObject(levelList); var reter = ctx.Database.SqlQuery <ServerNoInher>("SELECT * FROM server WHERE serverId = " + postUser.Id + ";").FirstOrDefault <ServerNoInher>(); returnValue = reter; } } } catch (Exception) { //returnValue = "Failed! - Exception - " + e; } return(returnValue); }
public List <ServerAccess> GetAll([FromBody] string value) { //Get the information from the application Get all access for a user. //string returnValue = "fail"; List <ServerAccess> returnValue = new List <ServerAccess>(); try { using (var ctx = new PamProjectEntities2()) { GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value); //Is session active? var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>(); if (userSession.expireTime >= DateTime.Now) { //Is user admin? var accessUser = ctx.users.SqlQuery("SELECT * FROM users WHERE userId LIKE '" + userSession.userId + "';").FirstOrDefault <user>(); if (accessUser.permissionLevelId == 1 || accessUser.permissionLevelId == 2) { //Return Json List of levels List <ServerAccess> levelList = new List <ServerAccess>(); levelList = ctx.Database.SqlQuery <ServerAccess>("SELECT ServerAccessId, userId, departmentId, serverId, startTime, finishTime, standardAccountId, allowed FROM serverAccessLevel WHERE userId = " + postUser.Id + ";").ToList(); returnValue = levelList; } else { if (accessUser.userId == postUser.Id) { //Return Json List of levels List <ServerAccess> levelList = new List <ServerAccess>(); levelList = ctx.Database.SqlQuery <ServerAccess>("SELECT ServerAccessId, userId, departmentId, serverId, startTime, finishTime, standardAccountId, allowed FROM serverAccessLevel WHERE userId = " + postUser.Id + ";").ToList(); returnValue = levelList; } } } } } catch (Exception e) { //returnValue = "Failed! - Exception - " + e; int i = 1;//Used so can breakpoint } return(returnValue); }