admin/raven
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Browse Source
This commit is contained in:
John Cardinal
2020-03-16 22:57:05 +00:00
parent b20882cb5e
commit a5881bb2fa
1 changed files with 8 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files

38
server/AyaNova/Controllers/PickListController.cs
View File

@@ -77,47 +77,23 @@ namespace AyaNova.Api.Controllers
return BadRequest(new ApiErrorResponse(ModelState)); return BadRequest(new ApiErrorResponse(ModelState));
var PickList = PickListFactory.GetAyaPickList(ayaType); var PickList = PickListFactory.GetAyaPickList(ayaType);
//was the name not found as a pick list? //was the name not found as a pick list?
if (PickList == null) if (PickList == null)
{ return NotFound(new ApiErrorResponse(ApiErrorCode.NOT_FOUND));
//not a user error so no need to localize
AddError(ApiErrorCode.NOT_FOUND, "ayaType", $"PickList for type \"{ayaType}\" specified does not exist");
return null;
} //check rights
if (!Authorized.HasAnyRole(HttpContext.Items, PickList.AllowedRoles))
//check rights return StatusCode(403, new ApiNotAuthorizedResponse());
if (!userRoles.HasAnyFlags(PickList.AllowedRoles))
{
AddError(ApiErrorCode.NOT_AUTHORIZED, "ayaType");
return null;
}
throw new System.UnauthorizedAccessException("User roles insufficient for this datalist");
// var UserRoles = UserRolesFromContext.Roles(HttpContext.Items);
var o = await biz.GetPickListAsync(PickList, query, inactive); var o = await biz.GetPickListAsync(PickList, query, inactive);
/* this is how a bad validation is handled in a widget post
//we need to validate the query and return an explanation if it's bad so user doesn't get confused and think theya re doing the right thing but not getting results anyway
//Create and validate
Widget o = await biz.CreateAsync(inObj);
if (o == null) if (o == null)
return BadRequest(new ApiErrorResponse(biz.Errors)); return BadRequest(new ApiErrorResponse(biz.Errors));
else else
return CreatedAtAction(nameof(WidgetController.GetWidget), new { id = o.Id, version = apiVersion.ToString() }, new ApiCreatedResponse(o)); return Ok(ApiOkResponse.Response(o, true));
*/
if (o == null)
return NotFound(new ApiErrorResponse(ApiErrorCode.NOT_FOUND));
return Ok(ApiOkResponse.Response(o, true));
} }