public ActionResult Create(PermissionCreateModel model)
{
PermService.AddPermission(model.Name, model.Description);
return(Json(new AjaxResult {
Status = "ok"
}));
}
public async Task <IActionResult> CreatePermissionAsync([FromRoute] int groupId, [FromBody] PermissionCreateModel model)
{
var currentAccount = await _accountRepository.GetAccountByIdAsync(CurrentAccountId);
if (currentAccount.GroupId > groupId)
{
throw new ForbiddenException(); // the lower the group id, the higher the authority; can only delete the group with authority lower than the current group
}
var group = await _groupRepository.GetGroupByIdAsync(groupId);
var function = await _functionRepository.GetFunctionByIdAsync(model.FunctionId);
if (group == null)
{
throw new NotFound404Exception("group");
}
if (function == null)
{
throw new NotFound400Exception("function");
}
if (await _groupRepository.AnyByPermissionAsync(model.FunctionId, groupId))
{
throw new AlreadyExistsException("function");
}
var permission = new Permission
{
FunctionId = model.FunctionId,
GroupId = groupId
};
await _groupRepository.CreatePermissionAsync(permission);
return(Ok(FunctionDTO.GetFrom(function)));
}
public async Task <ActionResult> Create(PermissionCreateModel model)
{
long id = await permissionService.AddNew(model.PermissionName, model.Description);
return(Redirect("Index"));
}
