hrms-bangkok/hrms-api-backend
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages 7 Wiki Activity Actions

permission วินัย

Browse source
This commit is contained in:
Bright 2024-08-22 17:48:48 +07:00
parent aea156e22f
commit a0008b6254
8 changed files with 335 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

67
BMA.EHR.Discipline.Service/Controllers/DisciplineComplaintController.cs
View file

@ -12,6 +12,8 @@ using Microsoft.EntityFrameworkCore;
using Swashbuckle.AspNetCore.Annotations;
using System.Runtime.Serialization;
using System.Security.Claims;
using Newtonsoft.Json;
using Newtonsoft.Json.Linq;
namespace BMA.EHR.DisciplineComplaint.Service.Controllers
{
@ -27,17 +29,20 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
private readonly MinIODisciplineService _documentService;
private readonly IHttpContextAccessor _httpContextAccessor;
private readonly NotificationRepository _repositoryNoti;
private readonly PermissionRepository _permission;
public DisciplineComplaintController(DisciplineDbContext context,
MinIODisciplineService documentService,
NotificationRepository repositoryNoti,
IHttpContextAccessor httpContextAccessor)
IHttpContextAccessor httpContextAccessor,
PermissionRepository permission)
{
// _repository = repository;
_context = context;
_documentService = documentService;
_httpContextAccessor = httpContextAccessor;
_repositoryNoti = repositoryNoti;
_permission = permission;
}
#region " Properties "
@ -59,6 +64,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpGet()]
public async Task<ActionResult<ResponseObject>> GetDisciplineComplaint(int page = 1, int pageSize = 25, string keyword = "", string status = "")
{
var getPermission = await _permission.GetPermissionAPIAsync("LIST", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data_search = (from x in _context.DisciplineComplaints
where x.Title.Contains(keyword) ||
(x.Appellant == null ? false : x.Appellant.Contains(keyword))
@ -126,6 +137,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpGet("{id:guid}")]
public async Task<ActionResult<ResponseObject>> GetByDisciplineComplaint(Guid id)
{
var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var _data = await _context.DisciplineComplaints
.Select(x => new
{
@ -239,6 +256,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpPost()]
public async Task<ActionResult<ResponseObject>> CreateDisciplineComplaint([FromBody] DisciplineComplaintRequest req)
{
var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var disciplineComplaint = new Domain.Models.Discipline.DisciplineComplaint
{
RespondentType = req.respondentType.Trim().ToUpper(),
@ -335,6 +358,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpPut("{id:guid}")]
public async Task<ActionResult<ResponseObject>> UpdateDisciplineComplaint([FromBody] DisciplineComplaintRequest req, Guid id)
{
var getPermission = await _permission.GetPermissionAPIAsync("UPDATE", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data = await _context.DisciplineComplaints.Include(x => x.DisciplineComplaint_Profiles).Where(x => x.Id == id).FirstOrDefaultAsync();
if (data == null)
return Error(new Exception(GlobalMessages.DataNotFound), StatusCodes.Status404NotFound);
@ -426,6 +455,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpDelete("{id:guid}")]
public async Task<ActionResult<ResponseObject>> DeleteDisciplineComplaint(Guid id)
{
var getPermission = await _permission.GetPermissionAPIAsync("DELETE", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data = await _context.DisciplineComplaints
// .Include(x=>x.Document)
.Where(x => x.Id == id)
@ -451,6 +486,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpGet("reject/{id:guid}")]
public async Task<ActionResult<ResponseObject>> RejectDisciplineComplaint(Guid id)
{
var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data = await _context.DisciplineComplaints
.Where(x => x.Id == id)
.FirstOrDefaultAsync();
@ -475,6 +516,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpPut("approve/{id:guid}")]
public async Task<ActionResult<ResponseObject>> ApproveDisciplineComplaint([FromBody] DisciplinePersonIdRequest req, Guid id)
{
var getPermission = await _permission.GetPermissionAPIAsync("UPDATE", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data = await _context.DisciplineComplaints
.Include(x => x.DisciplineComplaint_Profiles)
.Include(x => x.DisciplineComplaint_Docs)
@ -596,6 +643,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpGet("resume/{id:guid}")]
public async Task<ActionResult<ResponseObject>> ResumeDisciplineComplaint(Guid id)
{
var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data = await _context.DisciplineComplaints
.Where(x => x.Id == id)
.FirstOrDefaultAsync();
@ -620,6 +673,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpPut("file/{id:guid}")]
public async Task<ActionResult<ResponseObject>> UploadFileDisciplineComplaint([FromForm] DisciplineFileRequest req, Guid id)
{
var getPermission = await _permission.GetPermissionAPIAsync("UPDATE", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data = await _context.DisciplineComplaints
.Where(x => x.Id == id)
.FirstOrDefaultAsync();
@ -668,6 +727,12 @@ namespace BMA.EHR.DisciplineComplaint.Service.Controllers
[HttpDelete("file/{id:guid}/{docId:guid}")]
public async Task<ActionResult<ResponseObject>> DeleteFileDisciplineComplaint(Guid id, Guid docId)
{
var getPermission = await _permission.GetPermissionAPIAsync("DELETE", "SYS_DISCIPLINE_COMPLAIN");
var jsonData = JsonConvert.DeserializeObject<JObject>(getPermission);
if (jsonData["status"]?.ToString() != "200")
{
return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden);
}
var data = await _context.DisciplineComplaints
.Include(x => x.DisciplineComplaint_Docs)
.ThenInclude(x => x.Document)