public List <automationScript> GetAll([FromBody] string value)
{
//Get the information from the application
List <automationScript> returnValue = new List <automationScript>();
try
{
using (var ctx = new PamProjectEntities2())
{
GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value);
//Is session active?
var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>();
if (userSession.expireTime >= DateTime.Now)
{
//Return Json List of users
List <automationScript> automationList = new List <automationScript>();
automationList = ctx.Database.SqlQuery <automationScript>("SELECT * FROM automationScript WHERE serverOsId = " + postUser.Id + ";").ToList();
returnValue = automationList;
}
}
}
catch (Exception)
{
//returnValue = "Failed! - Exception - " + e;
}
return(returnValue);
}
public string Delete([FromBody] string value)
{
// check if the user is logged in and session is valid
string returnValue = "fail";
try
{
using (var ctx = new PamProjectEntities2())
{
GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value);
//Is session active?
var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>();
if (userSession.expireTime >= DateTime.Now)
{
// check the user has permissions to add a user (Admin only)
var accessUser = ctx.users.SqlQuery("SELECT * FROM users WHERE userId LIKE '" + userSession.userId + "';").FirstOrDefault <user>();
if (accessUser.permissionLevelId == 1 || accessUser.permissionLevelId == 2)
{
// if both yes then run sql delete command on the ID passed into the controller.
ctx.Database.ExecuteSqlCommand("DELETE FROM serverAccessLevel WHERE serverAccessId = " + postUser.Id + ";");
returnValue = "Pass!";
}
}
}
}
catch (Exception e)
{
returnValue = "Failed! - Exception - " + e;
}
return(returnValue);
}
public ServerNoInher Get([FromBody] string value)
{
//Get the information from the application Get all access for a user.
ServerNoInher returnValue = new ServerNoInher();
try
{
using (var ctx = new PamProjectEntities2())
{
GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value);
//Is session active?
var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>();
if (userSession.expireTime >= DateTime.Now)
{
//Return
//List<ServerNoInher> levelList = new List<ServerNoInher>();
//levelList = ctx.Database.SqlQuery<ServerNoInher>("SELECT * FROM server WHERE serverId = " + postUser.Id + ";").ToList();
//returnValue = JsonConvert.SerializeObject(levelList);
var reter = ctx.Database.SqlQuery <ServerNoInher>("SELECT * FROM server WHERE serverId = " + postUser.Id + ";").FirstOrDefault <ServerNoInher>();
returnValue = reter;
}
}
}
catch (Exception)
{
//returnValue = "Failed! - Exception - " + e;
}
return(returnValue);
}
public List <ServerAccess> GetAll([FromBody] string value)
{
//Get the information from the application Get all access for a user.
//string returnValue = "fail";
List <ServerAccess> returnValue = new List <ServerAccess>();
try
{
using (var ctx = new PamProjectEntities2())
{
GetAccessLevelUser postUser = JsonConvert.DeserializeObject <GetAccessLevelUser>(value);
//Is session active?
var userSession = ctx.activeSessions.SqlQuery("SELECT * FROM activeSessions WHERE sessionToken LIKE '" + postUser.SessionKey + "';").FirstOrDefault <activeSession>();
if (userSession.expireTime >= DateTime.Now)
{
//Is user admin?
var accessUser = ctx.users.SqlQuery("SELECT * FROM users WHERE userId LIKE '" + userSession.userId + "';").FirstOrDefault <user>();
if (accessUser.permissionLevelId == 1 || accessUser.permissionLevelId == 2)
{
//Return Json List of levels
List <ServerAccess> levelList = new List <ServerAccess>();
levelList = ctx.Database.SqlQuery <ServerAccess>("SELECT ServerAccessId, userId, departmentId, serverId, startTime, finishTime, standardAccountId, allowed FROM serverAccessLevel WHERE userId = " + postUser.Id + ";").ToList();
returnValue = levelList;
}
else
{
if (accessUser.userId == postUser.Id)
{
//Return Json List of levels
List <ServerAccess> levelList = new List <ServerAccess>();
levelList = ctx.Database.SqlQuery <ServerAccess>("SELECT ServerAccessId, userId, departmentId, serverId, startTime, finishTime, standardAccountId, allowed FROM serverAccessLevel WHERE userId = " + postUser.Id + ";").ToList();
returnValue = levelList;
}
}
}
}
}
catch (Exception e)
{
//returnValue = "Failed! - Exception - " + e;
int i = 1;//Used so can breakpoint
}
return(returnValue);
}
