Delete(int?id, [FromBody] CanAccessRequest canAccessRequest)
{
if (id != null)
{
//TODO:
//test
if (!await CheckIsUserAuthorizedForAction(canAccessRequest.Id, canAccessRequest.Token))
{
return(BadRequest("You have not enough permissions for this action"));
}
if (_carService.EntityExists((int)id))
{
var car = await _carService.GetById(id);
_vehicleImageRetriever.DeleteFile(car.ImgPath);
await _carService.Delete(id);
return(Ok(new Response <string>($"Car with id {id} was successfully deleted")));
}
}
return(BadRequest());
}
Delete(int?id, [FromBody] CanAccessRequest canAccessRequest)
{
if (id != canAccessRequest.Id)
{
return(BadRequest());
}
if (!await CheckIsUserAuthorizedForAction
(canAccessRequest.Id, canAccessRequest.Token))
{
return(BadRequest("You have not enough permissions for this action"));
}
await _penaltyRepository.Delete(id);
var updatedNums = await _penaltyRepository.SaveChangesAsync();
if (updatedNums > 0)
{
return(Ok(new Response <string>
($"Penalty with id {id} successfully deleted")));
}
return(NoContent());
}
public async Task <IActionResult> CanUserAccess([FromBody] CanAccessRequest canAccessRequest)
{
if (canAccessRequest == null ||
canAccessRequest.Token == null ||
canAccessRequest.Id == null ||
canAccessRequest.Token == string.Empty)
{
return(Ok(false));
}
if (!await CheckIsUserAuthorizedForAction((int)canAccessRequest.Id, canAccessRequest.Token))
{
return(Ok(false));
}
return(Ok(true));
}
