public void UpdateAuth(string id, Rock.CMS.DTO.Auth Auth) { var currentUser = Rock.CMS.UserService.GetCurrentUser(); if (currentUser == null) { throw new WebFaultException <string>("Must be logged in", System.Net.HttpStatusCode.Forbidden); } using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope()) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.CMS.AuthService AuthService = new Rock.CMS.AuthService(); Rock.CMS.Auth existingAuth = AuthService.Get(int.Parse(id)); if (existingAuth.Authorized("Edit", currentUser)) { uow.objectContext.Entry(existingAuth).CurrentValues.SetValues(Auth); if (existingAuth.IsValid) { AuthService.Save(existingAuth, currentUser.PersonId); } else { throw new WebFaultException <string>(existingAuth.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest); } } else { throw new WebFaultException <string>("Not Authorized to Edit this Auth", System.Net.HttpStatusCode.Forbidden); } } }
public void ApiCreateAuth(string apiKey, Rock.CMS.DTO.Auth Auth) { using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope()) { Rock.CMS.UserService userService = new Rock.CMS.UserService(); Rock.CMS.User user = userService.Queryable().Where(u => u.ApiKey == apiKey).FirstOrDefault(); if (user != null) { uow.objectContext.Configuration.ProxyCreationEnabled = false; Rock.CMS.AuthService AuthService = new Rock.CMS.AuthService(); Rock.CMS.Auth existingAuth = new Rock.CMS.Auth(); AuthService.Add(existingAuth, user.PersonId); uow.objectContext.Entry(existingAuth).CurrentValues.SetValues(Auth); if (existingAuth.IsValid) { AuthService.Save(existingAuth, user.PersonId); } else { throw new WebFaultException <string>(existingAuth.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest); } } else { throw new WebFaultException <string>("Invalid API Key", System.Net.HttpStatusCode.Forbidden); } } }