public virtual ActionResult BlogPost(int blogPostId)
{
if (!_blogSettings.Enabled)
{
return(RedirectToRoute("HomePage"));
}
var blogPost = _blogService.GetBlogPostById(blogPostId);
if (blogPost == null ||
(blogPost.StartDateUtc.HasValue && blogPost.StartDateUtc.Value >= DateTime.UtcNow) ||
(blogPost.EndDateUtc.HasValue && blogPost.EndDateUtc.Value <= DateTime.UtcNow))
{
return(RedirectToRoute("HomePage"));
}
//Store mapping
if (!_storeMappingService.Authorize(blogPost))
{
return(InvokeHttp404());
}
//display "edit" (manage) link
if (_permissionService.Authorize(StandardPermissionProvider.AccessAdminPanel) && _permissionService.Authorize(StandardPermissionProvider.ManageBlog))
{
DisplayEditLink(Url.Action("Edit", "Blog", new { id = blogPost.Id, area = "Admin" }));
}
var model = new BlogPostModel();
_blogModelFactory.PrepareBlogPostModel(model, blogPost, true);
return(View(model));
}
public virtual IActionResult BlogPostCreate()
{
if (!_permissionService.Authorize(StandardPermissionProvider.ManageBlog))
{
return(AccessDeniedView());
}
//prepare model
var model = _blogModelFactory.PrepareBlogPostModel(new BlogPostModel(), null);
return(View(model));
}
public virtual IActionResult BlogPostCreate()
{
bool isAuthorized = _authorizationService.AuthorizeAsync(User, GetCurrentUserAsync(), CustomerOperations.Create).Result.Succeeded;
if (!isAuthorized)
{
return(AccessDeniedView());
}
//prepare model
BlogPostModel model = _blogModelFactory.PrepareBlogPostModel(new BlogPostModel(), null);
return(View(model));
}
public virtual ActionResult BlogPost(int blogPostId)
{
var blogPost = _blogService.GetBlogPostById(blogPostId);
if (blogPost == null ||
(blogPost.StartDateUtc.HasValue && blogPost.StartDateUtc.Value >= DateTime.UtcNow) ||
(blogPost.EndDateUtc.HasValue && blogPost.EndDateUtc.Value <= DateTime.UtcNow))
{
return(RedirectToRoute("HomePage"));
}
var model = new BlogPostModel();
_blogModelFactory.PrepareBlogPostModel(model, blogPost, true);
return(View(model));
}
public virtual IActionResult BlogPost(int blogPostId)
{
if (!_blogSettings.Enabled)
{
return(RedirectToRoute("Homepage"));
}
var blogPost = _blogService.GetBlogPostById(blogPostId);
if (blogPost == null)
{
return(InvokeHttp404());
}
var notAvailable =
//availability dates
!_blogService.BlogPostIsAvailable(blogPost) ||
//Store mapping
!_storeMappingService.Authorize(blogPost);
//Check whether the current user has a "Manage blog" permission (usually a store owner)
//We should allows him (her) to use "Preview" functionality
var hasAdminAccess = _permissionService.Authorize(StandardPermissionProvider.AccessAdminPanel) && _permissionService.Authorize(StandardPermissionProvider.ManageBlog);
if (notAvailable && !hasAdminAccess)
{
return(InvokeHttp404());
}
//display "edit" (manage) link
if (hasAdminAccess)
{
DisplayEditLink(Url.Action("BlogPostEdit", "Blog", new { id = blogPost.Id, area = AreaNames.Admin }));
}
var model = new BlogPostModel();
_blogModelFactory.PrepareBlogPostModel(model, blogPost, true);
return(View(model));
}
public virtual IActionResult BlogPost(int blogPostId)
{
if (!_blogSettings.Enabled)
{
return(RedirectToRoute("HomePage"));
}
var blogPost = _blogService.GetBlogPostById(blogPostId);
if (blogPost == null)
{
return(RedirectToRoute("HomePage"));
}
var hasAdminAccess = _permissionService.Authorize(StandardPermissionProvider.AccessAdminPanel) && _permissionService.Authorize(StandardPermissionProvider.ManageBlog);
//access to Blog preview
if (!blogPost.IsAvailable() && !hasAdminAccess)
{
return(RedirectToRoute("HomePage"));
}
//Store mapping
if (!_storeMappingService.Authorize(blogPost))
{
return(InvokeHttp404());
}
//display "edit" (manage) link
if (hasAdminAccess)
{
DisplayEditLink(Url.Action("Edit", "Blog", new { id = blogPost.Id, area = AreaNames.Admin }));
}
var model = new BlogPostModel();
_blogModelFactory.PrepareBlogPostModel(model, blogPost, true);
return(View(model));
}
