public HttpResponseMessage GetNewsletter(int newsletterId) { HttpResponseMessage response = new HttpResponseMessage(HttpStatusCode.OK); UserPrincipal loggedInUser = (UserPrincipal)HttpContext.Current.User; response.Content = new ObjectContent <NewsletterModel> (NewsletterModel.MapNewsletterModel(NewsletterAdminBLL.GetNewsletter(newsletterId, loggedInUser.AccountSession.ClubId)), new JsonMediaTypeFormatter()); return(response); }
public HttpResponseMessage DeleteNewsletter(int newsletterId) { HttpResponseMessage response = new HttpResponseMessage(HttpStatusCode.OK); UserPrincipal loggedInUser = (UserPrincipal)HttpContext.Current.User; var newsletter = NewsletterAdminBLL.GetNewsletter(newsletterId, loggedInUser.AccountSession.ClubId); if (newsletter != null && newsletter.ClubId == loggedInUser.AccountSession.ClubId) { NewsletterAdminBLL.DeleteNewsletter(newsletter); } else { LogHelper.LogWarn(string.Format("UserId: {0} trying to delete a newsletter outside of the club, newsletter: {1}", loggedInUser.AccountSession.AccountId, newsletterId), null, loggedInUser.AccountSession.ClubId); response.StatusCode = HttpStatusCode.Forbidden; } return(response); }