public IActionResult Post([FromBody] AccessControlEntity value)
{
string currentUser = HttpContext.User.Identity.Name;
if (!_securityRepository.UserIsAuthorisedByBuisnessAreas(HttpContext, AuthActions.Supervisor, value.BusinessArea))
{
return(_securityRepository.Gate(GateType.Unathorised, AccessLogAction.ACECreate, currentUser, _object, string.Empty));
}
_accessRepository.Add(value);
_accessRepository.SaveChanges();
_securityRepository.LogUserAction(currentUser, AccessLogAction.ACECreate, value.Id, _object, true);
_securityRepository.SaveChanges();
return(Ok(value));
}
public IActionResult Put(int id, [FromBody] AccessControlEntity value)
{
string currentUser = HttpContext.User.Identity.Name;
var result = _accessRepository.GetById(id);
if (String.IsNullOrWhiteSpace(result.BusinessArea) || String.IsNullOrWhiteSpace(result.Group))
{
return(_securityRepository.Gate(GateType.NotFound, AccessLogAction.ACEUpdate, currentUser, _object, id.ToString()));
}
if (!_securityRepository.UserIsAuthorisedByBuisnessAreas(HttpContext, AuthActions.Supervisor, result.BusinessArea))
{
return(_securityRepository.Gate(GateType.Unathorised, AccessLogAction.ACEUpdate, currentUser, _object, id.ToString()));
}
_accessRepository.Edit(value);
_securityRepository.LogUserAction(currentUser, AccessLogAction.ACEUpdate, id.ToString(), _object, true);
_accessRepository.SaveChanges();
return(Ok(value));
}
public void Edit(AccessControlEntity entity)
{
GetById(entity.Id);
_context.AcessControlEntity.Update(entity);
}
public void Delete(AccessControlEntity entity)
{
_context.AcessControlEntity.Remove(entity);
}
public void Add(AccessControlEntity entity)
{
_context.AcessControlEntity.Add(entity);
}
