From da205081040af221f73fef29148975155c585ca0 Mon Sep 17 00:00:00 2001 From: Bright Date: Thu, 22 Aug 2024 17:39:23 +0700 Subject: [PATCH] add action GET, LIST --- Controllers/CMSCandidateController.cs | 36 +++++++-------------- Controllers/DisableController.cs | 32 +++++++++---------- Controllers/PeriodExamController.cs | 45 ++++++++++++++++++++------- 3 files changed, 61 insertions(+), 52 deletions(-) diff --git a/Controllers/CMSCandidateController.cs b/Controllers/CMSCandidateController.cs index 1aeb749..fcd8fc0 100644 --- a/Controllers/CMSCandidateController.cs +++ b/Controllers/CMSCandidateController.cs @@ -54,6 +54,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_EXAM_WEBSITE"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var items = await _cmsCandidateService.GetsAsync(); return Success(items); @@ -80,15 +86,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "CREATE"; - var system = "SYS_EXAM_WEBSITE"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_WEBSITE"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); await _cmsCandidateService.UpdateDetailAsync(detail); return Success(); @@ -115,15 +118,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "CREATE"; - var system = "SYS_EXAM_WEBSITE"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_WEBSITE"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); await _cmsCandidateService.UpdateAboutAsync(about); return Success(); @@ -150,15 +150,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "CREATE"; - var system = "SYS_EXAM_WEBSITE"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_WEBSITE"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); if (Request.Form.Files == null || Request.Form.Files.Count == 0) { return Error(GlobalMessages.NoFileToUpload); @@ -191,15 +188,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "CREATE"; - var system = "SYS_EXAM_WEBSITE"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_WEBSITE"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); if (Request.Form.Files == null || Request.Form.Files.Count == 0) { return Error(GlobalMessages.NoFileToUpload); @@ -232,15 +226,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "CREATE"; - var system = "SYS_EXAM_WEBSITE"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_WEBSITE"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); await _cmsCandidateService.UpdateAgencyAsync(agency); return Success(); @@ -267,15 +258,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "CREATE"; - var system = "SYS_EXAM_WEBSITE"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_WEBSITE"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); await _cmsCandidateService.UpdateGovernmentAsync(government); return Success(); diff --git a/Controllers/DisableController.cs b/Controllers/DisableController.cs index be7821c..5d13367 100644 --- a/Controllers/DisableController.cs +++ b/Controllers/DisableController.cs @@ -560,15 +560,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "UPDATE"; - var system = "SYS_EXAM_SELECT"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("UPDATE", "SYS_EXAM_SELECT"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); var data = await _context.PeriodExams.AsQueryable() .Where(x => x.CheckDisability == true) .FirstOrDefaultAsync(x => x.Id == id); @@ -624,15 +621,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "DELETE"; - var system = "SYS_EXAM_SELECT"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("DELETE", "SYS_EXAM_SELECT"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); var data = await _context.PeriodExams.AsQueryable() .Where(x => x.CheckDisability == true) .Include(x => x.ImportFile) @@ -687,6 +681,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("LIST", "SYS_EXAM_SELECT"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var data = await _context.PeriodExams.AsQueryable() .Where(x => x.CheckDisability == true) .Include(x => x.ImportFile) @@ -1087,6 +1087,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_EXAM_SELECT"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var data = await _context.DisableImportHistories.AsQueryable() .Include(x => x.PeriodExam) .Where(x => x.PeriodExam.Id == id) @@ -1119,15 +1125,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers [ProducesResponseType(StatusCodes.Status500InternalServerError)] public async Task> ImportCandidateFileByIdAsync(Guid id) { - var action = "CREATE"; - var system = "SYS_EXAM_SELECT"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_SELECT"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); var tmpDir = Path.Combine(_webHostEnvironment.ContentRootPath, "tmp"); if (!Directory.Exists(tmpDir)) Directory.CreateDirectory(tmpDir); @@ -1372,15 +1375,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers [HttpPost("score/{id:length(36)}"), DisableRequestSizeLimit] public async Task> ImportScoreFileAsync(Guid id) { - var action = "CREATE"; - var system = "SYS_EXAM_SELECT"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_SELECT"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); var tmpDir = Path.Combine(_webHostEnvironment.ContentRootPath, "tmp"); if (!Directory.Exists(tmpDir)) Directory.CreateDirectory(tmpDir); diff --git a/Controllers/PeriodExamController.cs b/Controllers/PeriodExamController.cs index 1ca8029..c188468 100644 --- a/Controllers/PeriodExamController.cs +++ b/Controllers/PeriodExamController.cs @@ -56,6 +56,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("LIST", "SYS_EXAM_SELECT"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var items = await _periodExamService.GetsAsync("all", showAll: false); return Success(items); @@ -82,6 +88,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("LIST", "SYS_EXAM_SELECT"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var items = await _periodExamService.GetsAsync(type, showAll: false); return Success(items); @@ -108,6 +120,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_EXAM_SELECT"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var items = await _periodExamService.GetsStatusPaymentAsync(examId); return Success(items); @@ -134,6 +152,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_EXAM_SELECT"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var items = await _periodExamService.GetsExamAndCandidateAsync(examId, showAll: false); return Success(items); @@ -160,15 +184,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "CREATE"; - var system = "SYS_EXAM_SELECT"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("CREATE", "SYS_EXAM_SELECT"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); var items = await _periodExamService.CreateAsync(item); return Success(items); @@ -196,15 +217,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "UPDATE"; - var system = "SYS_EXAM_SELECT"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("UPDATE", "SYS_EXAM_SELECT"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); await _periodExamService.UpdateAsync(examId, item); return Success(); @@ -271,15 +289,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { - var action = "DELETE"; - var system = "SYS_EXAM_SELECT"; - var getPermission = await _permission.GetPermissionAPIAsync(action, system); + var getPermission = await _permission.GetPermissionAPIAsync("DELETE", "SYS_EXAM_SELECT"); var jsonData = JsonConvert.DeserializeObject(getPermission); if (jsonData["status"]?.ToString() != "200") { return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); } - var attrPrivilege = jsonData["result"]?.ToString(); await _periodExamService.DeleteAsync(examId); return Success(); @@ -852,6 +867,12 @@ namespace BMA.EHR.Recurit.Exam.Service.Controllers { try { + var getPermission = await _permission.GetPermissionAPIAsync("GET", "SYS_EXAM_SELECT"); + var jsonData = JsonConvert.DeserializeObject(getPermission); + if (jsonData["status"]?.ToString() != "200") + { + return Error(jsonData["message"]?.ToString(), StatusCodes.Status403Forbidden); + } var items = await _periodExamService.GetsDashboardPaymentExamAsync(examId); return Success(items);