2020-11-24 17:54:50 +00:00
parent 0f17a79c30
commit 16e664852d
2 changed files with 5 additions and 5 deletions
--- a/server/AyaNova/Controllers/CustomerNoteController.cs
+++ b/server/AyaNova/Controllers/CustomerNoteController.cs
@@ -47,7 +47,7 @@ namespace AyaNova.Api.Controllers
            if (!serverState.IsOpen)
                return StatusCode(503, new ApiErrorResponse(serverState.ApiErrorCode, null, serverState.Reason));
            CustomerNoteBiz biz = CustomerNoteBiz.GetBiz(ct, HttpContext);
-            if (!Authorized.HasCreateRole(HttpContext.Items, biz.BizType))
+            if (!Authorized.HasCreateRole(HttpContext.Items, AyaType.Customer))
                return StatusCode(403, new ApiNotAuthorizedResponse());
            if (!ModelState.IsValid)
                return BadRequest(new ApiErrorResponse(ModelState));
@@ -71,7 +71,7 @@ namespace AyaNova.Api.Controllers
            if (!serverState.IsOpen)
                return StatusCode(503, new ApiErrorResponse(serverState.ApiErrorCode, null, serverState.Reason));
            CustomerNoteBiz biz = CustomerNoteBiz.GetBiz(ct, HttpContext);
-            if (!Authorized.HasReadFullRole(HttpContext.Items, biz.BizType))
+            if (!Authorized.HasReadFullRole(HttpContext.Items, AyaType.Customer))
                return StatusCode(403, new ApiNotAuthorizedResponse());
            if (!ModelState.IsValid)
                return BadRequest(new ApiErrorResponse(ModelState));
@@ -93,7 +93,7 @@ namespace AyaNova.Api.Controllers
            if (!ModelState.IsValid)
                return BadRequest(new ApiErrorResponse(ModelState));
            CustomerNoteBiz biz = CustomerNoteBiz.GetBiz(ct, HttpContext);
-            if (!Authorized.HasModifyRole(HttpContext.Items, biz.BizType))
+            if (!Authorized.HasModifyRole(HttpContext.Items, AyaType.Customer))
                return StatusCode(403, new ApiNotAuthorizedResponse());
            var o = await biz.PutAsync(updatedObject);//In future may need to return entire object, for now just concurrency token 
            if (o == null)
@@ -119,7 +119,7 @@ namespace AyaNova.Api.Controllers
            if (!ModelState.IsValid)
                return BadRequest(new ApiErrorResponse(ModelState));
            CustomerNoteBiz biz = CustomerNoteBiz.GetBiz(ct, HttpContext);
-            if (!Authorized.HasDeleteRole(HttpContext.Items, biz.BizType))
+            if (!Authorized.HasDeleteRole(HttpContext.Items, AyaType.Customer))
                return StatusCode(403, new ApiNotAuthorizedResponse());
            if (!await biz.DeleteAsync(id))
                return BadRequest(new ApiErrorResponse(biz.Errors));