public ActionResult Create(Application.Entities.User model)
{
var baseObject = GetBaseObject();
if (!baseObject.User.IsSuperAdmin)
{
new BusinessRuleException("Access Denied");
}
_userService.Create(model);
return(RedirectToAction("List", "Administration"));
}
public ActionResult Edit(Guid userId)
{
var baseObject = GetBaseObject();
Application.Entities.User userModel = _userService.Get(userId);
IList <Application.ValueObjects.FacilityPermission> userFacilityPermissions = _userService.ListFacilityPermissions(userId);
if (baseObject.User.Id != userModel.Id && !baseObject.User.IsSuperAdmin)
{
throw new BusinessRuleException("Not authorized to view this user");
}
return(View(new ViewObjects.User.Edit(baseObject)
{
UserModel = userModel,
UserModelFacilityPermissions = userFacilityPermissions,
MeasurementTools = _listRepository.GetMeasurementTools(),
Facilities = _listRepository.GetFacilities(),
Permissions = _listRepository.GetPermissions()
}));
}
public ActionResult Edit(Application.Entities.User model)
{
bool result = _userService.Save(model);
return(RedirectToAction("Edit", "User", new { userId = model.Id }));
}
