public ActionResult Create(Application.Entities.User model) { var baseObject = GetBaseObject(); if (!baseObject.User.IsSuperAdmin) { new BusinessRuleException("Access Denied"); } _userService.Create(model); return(RedirectToAction("List", "Administration")); }
public ActionResult Edit(Guid userId) { var baseObject = GetBaseObject(); Application.Entities.User userModel = _userService.Get(userId); IList <Application.ValueObjects.FacilityPermission> userFacilityPermissions = _userService.ListFacilityPermissions(userId); if (baseObject.User.Id != userModel.Id && !baseObject.User.IsSuperAdmin) { throw new BusinessRuleException("Not authorized to view this user"); } return(View(new ViewObjects.User.Edit(baseObject) { UserModel = userModel, UserModelFacilityPermissions = userFacilityPermissions, MeasurementTools = _listRepository.GetMeasurementTools(), Facilities = _listRepository.GetFacilities(), Permissions = _listRepository.GetPermissions() })); }
public ActionResult Edit(Application.Entities.User model) { bool result = _userService.Save(model); return(RedirectToAction("Edit", "User", new { userId = model.Id })); }