WIP separation Web et API

2025-02-12 20:41:14 +00:00
parent 6cd5f1d041
commit c2ae054719
55 changed files with 71 additions and 98 deletions
--- a/src/Api/Controllers/PostRateApiController.cs
+++ b/src/Api/Controllers/PostRateApiController.cs
@ -0,0 +1,47 @@
+using System.Linq;
+using System.Security.Claims;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Yavsc.Helpers;
+using Yavsc.Models;
+
+namespace Yavsc.Controllers
+{
+    [Produces("application/json")]
+    [Route("~/api/PostRateApi")]
+    public class PostRateApiController : Controller
+    {
+        private readonly ApplicationDbContext _context;
+
+        public PostRateApiController(ApplicationDbContext context)
+        {
+            _context = context;
+        }
+
+                // GET: api/PostRateApi/5
+        [HttpPut("{id}"),Authorize]
+        public IActionResult PutPostRate([FromRoute] long id, [FromBody] int rate)
+        {
+            if (!ModelState.IsValid)
+            {
+                return BadRequest(ModelState);
+            }
+
+            Models.Blog.BlogPost blogpost = _context.BlogSpot.Single(x=>x.Id == id);
+
+            if (blogpost == null)
+            {
+                return NotFound();
+            }
+
+            var uid = User.FindFirstValue(ClaimTypes.NameIdentifier);
+            if (blogpost.AuthorId!=uid)
+                if (!User.IsInRole(Constants.AdminGroupName))
+                    return BadRequest();
+
+            _context.SaveChanges(User.GetUserId());
+
+            return Ok();
+        }
+    }
+}