void IEntitySecurity <Configuration.UserPreference> .ValidateCreate(Configuration.UserPreference value) { var principal = GetAuthPrincipal(); if (string.Equals(principal.Name, value.User, StringComparison.CurrentCultureIgnoreCase)) { return; } throw new UnauthorizedAccessException(); }
void IEntitySecurity <Configuration.UserPreference> .ValidateUpdate(Configuration.UserPreference entity, Configuration.UserPreference value) { var principal = GetAuthPrincipal(); if (IsAdmin(principal) || IsSystem(principal) || IsSuper(principal)) { return; } if (value.User == entity.User && entity.User == principal.Name) { return; } throw new UnauthorizedAccessException(); }