This commit is contained in:
@@ -9,12 +9,8 @@ todo: all api routes, re-arrange code in controller in this order POST (and post
|
||||
BIZ TOO
|
||||
todo: all api route URI's sb lower case with dashes if necessary (use plural noun scheme)
|
||||
https://docs.microsoft.com/en-us/azure/architecture/best-practices/api-design#organize-the-api-around-resources
|
||||
todo: Controllers should not need to know about databases
|
||||
refactor code so controller never fetches or deals with saving an object, all that is biz responsibility
|
||||
todo: Routes should check rights *BEFORE* they fetch the object, not after, all routes affected
|
||||
i.e. delete route instantiates biz object, then it fetchs object from db *then* it checks if they have rights to delete (generically, not specific to that object)
|
||||
This is out of order as it triggers a db call even if they have no rights to do it
|
||||
todo: all biz objects "ExistsAsync" is this required / necessary?
|
||||
|
||||
|
||||
---
|
||||
todo: add query fail logging to datalist just like done with picklist so in production can catch mysterious problems more easily
|
||||
todo: AUTO ID GENERATOR
|
||||
|
||||
Reference in New Issue
Block a user