public void ApiDeleteNote( string id, string apiKey )
{
using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() )
{
Rock.CMS.UserService userService = new Rock.CMS.UserService();
Rock.CMS.User user = userService.Queryable().Where( u => u.ApiKey == apiKey ).FirstOrDefault();
if (user != null)
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Core.NoteService NoteService = new Rock.Core.NoteService();
Rock.Core.Note Note = NoteService.Get( int.Parse( id ) );
if ( Note.Authorized( "Edit", user ) )
{
NoteService.Delete( Note, user.PersonId );
NoteService.Save( Note, user.PersonId );
}
else
throw new WebFaultException<string>( "Not Authorized to Edit this Note", System.Net.HttpStatusCode.Forbidden );
}
else
throw new WebFaultException<string>( "Invalid API Key", System.Net.HttpStatusCode.Forbidden );
}
}
public void ApiCreateNote( string apiKey, Rock.Core.DTO.Note Note )
{
using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() )
{
Rock.CMS.UserService userService = new Rock.CMS.UserService();
Rock.CMS.User user = userService.Queryable().Where( u => u.ApiKey == apiKey ).FirstOrDefault();
if (user != null)
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Core.NoteService NoteService = new Rock.Core.NoteService();
Rock.Core.Note existingNote = new Rock.Core.Note();
NoteService.Add( existingNote, user.PersonId );
uow.objectContext.Entry(existingNote).CurrentValues.SetValues(Note);
if (existingNote.IsValid)
NoteService.Save( existingNote, user.PersonId );
else
throw new WebFaultException<string>( existingNote.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest );
}
else
throw new WebFaultException<string>( "Invalid API Key", System.Net.HttpStatusCode.Forbidden );
}
}
public Rock.Core.DTO.Note ApiGet( string id, string apiKey )
{
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
Rock.CMS.UserService userService = new Rock.CMS.UserService();
Rock.CMS.User user = userService.Queryable().Where( u => u.ApiKey == apiKey ).FirstOrDefault();
if (user != null)
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Core.NoteService NoteService = new Rock.Core.NoteService();
Rock.Core.Note Note = NoteService.Get( int.Parse( id ) );
if ( Note.Authorized( "View", user ) )
return Note.DataTransferObject;
else
throw new WebFaultException<string>( "Not Authorized to View this Note", System.Net.HttpStatusCode.Forbidden );
}
else
throw new WebFaultException<string>( "Invalid API Key", System.Net.HttpStatusCode.Forbidden );
}
}
public void UpdateNote( string id, Rock.Core.DTO.Note Note )
{
var currentUser = Rock.CMS.UserService.GetCurrentUser();
if ( currentUser == null )
throw new WebFaultException<string>("Must be logged in", System.Net.HttpStatusCode.Forbidden );
using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() )
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Core.NoteService NoteService = new Rock.Core.NoteService();
Rock.Core.Note existingNote = NoteService.Get( int.Parse( id ) );
if ( existingNote.Authorized( "Edit", currentUser ) )
{
uow.objectContext.Entry(existingNote).CurrentValues.SetValues(Note);
if (existingNote.IsValid)
NoteService.Save( existingNote, currentUser.PersonId );
else
throw new WebFaultException<string>( existingNote.ValidationResults.AsDelimited(", "), System.Net.HttpStatusCode.BadRequest );
}
else
throw new WebFaultException<string>( "Not Authorized to Edit this Note", System.Net.HttpStatusCode.Forbidden );
}
}
public Rock.Core.DTO.Note Get( string id )
{
var currentUser = Rock.CMS.UserService.GetCurrentUser();
if ( currentUser == null )
throw new WebFaultException<string>("Must be logged in", System.Net.HttpStatusCode.Forbidden );
using (Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope())
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Core.NoteService NoteService = new Rock.Core.NoteService();
Rock.Core.Note Note = NoteService.Get( int.Parse( id ) );
if ( Note.Authorized( "View", currentUser ) )
return Note.DataTransferObject;
else
throw new WebFaultException<string>( "Not Authorized to View this Note", System.Net.HttpStatusCode.Forbidden );
}
}
public void DeleteNote( string id )
{
var currentUser = Rock.CMS.UserService.GetCurrentUser();
if ( currentUser == null )
throw new WebFaultException<string>("Must be logged in", System.Net.HttpStatusCode.Forbidden );
using ( Rock.Data.UnitOfWorkScope uow = new Rock.Data.UnitOfWorkScope() )
{
uow.objectContext.Configuration.ProxyCreationEnabled = false;
Rock.Core.NoteService NoteService = new Rock.Core.NoteService();
Rock.Core.Note Note = NoteService.Get( int.Parse( id ) );
if ( Note.Authorized( "Edit", currentUser ) )
{
NoteService.Delete( Note, currentUser.PersonId );
NoteService.Save( Note, currentUser.PersonId );
}
else
throw new WebFaultException<string>( "Not Authorized to Edit this Note", System.Net.HttpStatusCode.Forbidden );
}
}
