public async Task <IActionResult> Post([FromBody] DtoCertificate dto)
{
var entity = Mapper.Map <Certificate>(dto);
var allowed = await _securityManager.HasPermissionAsync(entity, AccessOperation.CREATE);
if (!allowed)
{
return(Forbid());
}
_context.Certificates.Add(entity);
await _context
.SaveChangesAsync()
.ConfigureAwait(false);
return(Ok(entity.Id));
}
public async Task <IActionResult> Update([FromBody] DtoCertificate dto, [FromRoute] long id)
{
var template = Mapper.Map <Certificate>(dto);
template.Id = id;
var allowed = await _securityManager.HasPermissionAsync(template, AccessOperation.UPDATE);
if (!allowed)
{
return(Forbid());
}
await _context.Certificates
.Where(x => x.Id == id)
.UpdateFromQueryAsync(_ => template)
.ConfigureAwait(false);
return(Ok(id));
}
