public ActionResult DeleteAdvert(int id) { Repository repository = new Repository(); var user = repository.GetUser(User.Identity.Name); var advert = repository.GetAdvert(id); if ( repository.GetAdvert(id) != null) { if(user.Id == advert.UserId) { repository.DeleteAdvert(advert); return RedirectToAction("Index", "Home"); } return RedirectToAction("Login", "Account");// нет прав } return RedirectToAction("Index", "Home");// объявления не найдено }
public ActionResult EditAdvert(int id) { ViewBag.AdvertID = id; Repository repository = new Repository(); var user = repository.GetUser(User.Identity.Name); var advert = repository.GetAdvert(id); if (user.Id == advert.UserId) { var model = new EditModel() { AdvertID = advert.AdvertID, Description = advert.Description, Title = advert.Title }; return View(model); } return RedirectToAction("Index", "Home"); }
public ActionResult EditAdvert(EditModel model) { Repository repository = new Repository(); var user = repository.GetUser(User.Identity.Name); if (repository.GetAdvert(model.AdvertID) != null) { if (user.Id == repository.GetAdvert(model.AdvertID).UserId) { repository.EditAdvert(model); return RedirectToAction("Index", "Home"); } return RedirectToAction("Login", "Account");// нет прав } return RedirectToAction("Index", "Home");// объявления нет }