Exemplo n.º 1
0
        protected override bool AuthorizeCore(HttpContextBase httpContext)
        {
            var anonymousService = new AnonymousUserService();

            object routId;

            switch (httpContext.Request.HttpMethod)
            {
            case "POST":
                routId = httpContext.Request.Params["Id"];
                break;

            case "GET":
                routId = httpContext.Request.RequestContext.RouteData.Values["id"];
                break;

            default:
                routId = httpContext.Request.RequestContext.RouteData.Values["id"];
                break;
            }

            var annId = 0;

            if (routId != null)
            {
                annId = Convert.ToInt32(routId);
            }

            if (annId == 0 || !anonymousService.IsUserCanEditRealty(annId))
            {
                return(base.AuthorizeCore(httpContext));
            }
            return(true);
        }
        protected override bool AuthorizeCore(HttpContextBase httpContext)
        {
            var anonymousService = new AnonymousUserService();
            var routId = httpContext.Request.RequestContext.RouteData.Values["id"];
            var annId = 0;
            if (routId != null)
                annId = Convert.ToInt32(routId);

            if (annId == 0 || !anonymousService.IsUserCanEdit(annId))
            {
                return base.AuthorizeCore(httpContext);
            }
            return true;
        }