public async Task <MemoCardDto> AddMemoCard(User user, MemoCardDto memoCard) { // HttpUtility encode provided data to prevent storing HTML tags var card = new MemoCard(user, HttpUtility.HtmlEncode(memoCard.Name), HttpUtility.HtmlEncode(memoCard.Description)); await _context.MemoCards.AddAsync(card); await _context.SaveChangesAsync(); return(_mapper.Map <MemoCardDto>(card)); }
public async Task UpdateMemoCard(MemoCardDto dto) { var memoCard = await GetById(dto.Id); memoCard.SetName(HttpUtility.HtmlEncode(dto.Name)); memoCard.SetDescription(HttpUtility.HtmlEncode(dto.Description)); // UPDATE[MemoCards] [Description] = Description, [Name] = Name, [Updated] = Updated // WHERE[Id] = MemoIdId; _context.Update(memoCard); await _context.SaveChangesAsync(); }
public async Task <IActionResult> Post(MemoCardDto dto) { var user = HttpContext.Items["User"] as User; var card = await _cardService.Get(dto.Id); if (card != null) { return(BadRequest($"Card with guid {dto.Id} exists.")); } card = await _cardService.AddMemoCard(user, dto); return(CreatedAtAction(nameof(Post), new { id = card.Id }, card)); }
public async Task Put(MemoCardDto dto, string id) { await _cardService.UpdateMemoCard(dto); }