tsk-76: Added model and context for AccessLevel #108
@@ -121,7 +121,23 @@ public class TokenManager : BaseManager
|
|||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
||||||
public int RetrieveUserIdFromToken(string token)
|
// TODO: Make this call to whenver media is being accessed or modified - cover art, genre,
|
||||||
|
// album, song, et cetera
|
||||||
|
public bool CanAccessSong(string token, Song song, AccessLevel accessLevel)
|
||||||
|
{
|
||||||
|
if (accessLevel!.Level!.Equals(Models.AccessLevel.DefaultLevel().Level)) {
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
var tokenUserId = this.RetrieveUserIdFromToken(token);
|
||||||
|
if (tokenUserId == null)
|
||||||
|
{
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
return tokenUserId.Value == song.UserId;
|
||||||
|
}
|
||||||
|
|
||||||
|
public int? RetrieveUserIdFromToken(string token)
|
||||||
{
|
{
|
||||||
if (this.ContainsBearer(token))
|
if (this.ContainsBearer(token))
|
||||||
{
|
{
|
||||||
@@ -130,18 +146,19 @@ public class TokenManager : BaseManager
|
|||||||
|
|
||||||
var tokenHandler = new JwtSecurityTokenHandler();
|
var tokenHandler = new JwtSecurityTokenHandler();
|
||||||
var readTok = tokenHandler.ReadJwtToken(token);
|
var readTok = tokenHandler.ReadJwtToken(token);
|
||||||
var userId = -1;
|
// var userId = -1;
|
||||||
|
|
||||||
foreach (var item in readTok.Payload)
|
foreach (var item in readTok.Payload)
|
||||||
{
|
{
|
||||||
if (item.Key == "user_id")
|
if (item.Key == "user_id")
|
||||||
{
|
{
|
||||||
userId = Convert.ToInt32(item.Value);
|
// userId =
|
||||||
break;
|
return Convert.ToInt32(item.Value);
|
||||||
|
// break;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
return userId;
|
return null;
|
||||||
}
|
}
|
||||||
|
|
||||||
private string StripBearer(string token)
|
private string StripBearer(string token)
|
||||||
|
|||||||
@@ -27,28 +27,25 @@ public class AccessLevelController : BaseController
|
|||||||
|
|
||||||
#region HTTP Routes
|
#region HTTP Routes
|
||||||
[HttpGet]
|
[HttpGet]
|
||||||
public IActionResult GetAccessLevels([FromBody] Icarus.Models.AccessLevel accessLevel)
|
public IActionResult GetAccessLevels(int? id, int? songId)
|
||||||
{
|
{
|
||||||
var accLevel = new Icarus.Models.AccessLevel { Id = 0 };
|
var accLevel = new Icarus.Models.AccessLevel { Id = 0 };
|
||||||
var accessLevelContext = new Icarus.Database.Contexts.AccessLevelContext(_connectionString!);
|
var accessLevelContext = new Icarus.Database.Contexts.AccessLevelContext(_connectionString!);
|
||||||
|
|
||||||
if (accessLevel.Id != 0)
|
if (id != null)
|
||||||
{
|
{
|
||||||
var id = accessLevel.Id;
|
|
||||||
accLevel = accessLevelContext.AccessLevels!.FirstOrDefault(al => al.Id == id);
|
accLevel = accessLevelContext.AccessLevels!.FirstOrDefault(al => al.Id == id);
|
||||||
}
|
}
|
||||||
else if (accessLevel.SongId != 0)
|
else if (songId != null)
|
||||||
{
|
{
|
||||||
var songId = accessLevel.SongId;
|
|
||||||
accLevel = accessLevelContext.AccessLevels!.FirstOrDefault(al => al.SongId == songId);
|
accLevel = accessLevelContext.AccessLevels!.FirstOrDefault(al => al.SongId == songId);
|
||||||
}
|
}
|
||||||
|
|
||||||
var response = new GetAccessLevelsResponse();
|
var response = new GetAccessLevelsResponse{ Data = new List<Models.AccessLevel>()};
|
||||||
|
|
||||||
if (accLevel?.Id > 0)
|
if (accLevel?.Id > 0)
|
||||||
{
|
{
|
||||||
response.Subject = "Successful";
|
response.Subject = "Successful";
|
||||||
response.Data = new List<Icarus.Models.AccessLevel>();
|
|
||||||
response.Data.Add(accLevel);
|
response.Data.Add(accLevel);
|
||||||
return Ok(response);
|
return Ok(response);
|
||||||
}
|
}
|
||||||
@@ -60,12 +57,45 @@ public class AccessLevelController : BaseController
|
|||||||
}
|
}
|
||||||
|
|
||||||
[HttpPatch("{id}")]
|
[HttpPatch("{id}")]
|
||||||
public IActionResult UpdateAccessLevel(int id, [FromBody] Icarus.Models.AccessLevel accessLevel)
|
public IActionResult UpdateAccessLevel(int id, [FromBody] Models.AccessLevel accessLevel)
|
||||||
{
|
{
|
||||||
var response = new UpdateAccessLevelResponse();
|
var response = new UpdateAccessLevelResponse{ Data = new List<Models.AccessLevel>()};
|
||||||
var accessLevelContext = new Icarus.Database.Contexts.AccessLevelContext(this._connectionString!);
|
var targetLevel = accessLevel.Level;
|
||||||
|
if (targetLevel == null) {
|
||||||
|
response.Subject = "No level provided";
|
||||||
|
return BadRequest(response);
|
||||||
|
} else {
|
||||||
|
if (!Models.AccessLevel.IsAccessLevelValid(targetLevel)) {
|
||||||
|
response.Subject = "Invalid level";
|
||||||
|
return BadRequest(response);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
var accessLevelContext = new Database.Contexts.AccessLevelContext(this._connectionString!);
|
||||||
|
|
||||||
|
var fetchedAccLevel = accessLevelContext.AccessLevels!.FirstOrDefault(al => al.Id == id);
|
||||||
|
|
||||||
|
if (fetchedAccLevel == null) {
|
||||||
|
response.Subject = "Nothing found";
|
||||||
|
return NotFound(response);
|
||||||
|
}
|
||||||
|
|
||||||
|
var fetchedLevel = fetchedAccLevel!.Level;
|
||||||
|
|
||||||
|
if (fetchedLevel!.Equals(targetLevel)) {
|
||||||
|
// No change
|
||||||
|
response.Subject = "No change";
|
||||||
|
response.Data.Add(fetchedAccLevel);
|
||||||
return Ok(response);
|
return Ok(response);
|
||||||
|
} else {
|
||||||
|
fetchedAccLevel.Level = targetLevel;
|
||||||
|
response.Subject = "Successful";
|
||||||
|
accessLevelContext.Update(fetchedAccLevel);
|
||||||
|
accessLevelContext.SaveChanges();
|
||||||
|
|
||||||
|
response.Data.Add(fetchedAccLevel);
|
||||||
|
return Ok(response);
|
||||||
|
}
|
||||||
}
|
}
|
||||||
#endregion
|
#endregion
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -116,9 +116,9 @@ public class SongDataController : BaseController
|
|||||||
var accessToken = Request.Headers["Authorization"];
|
var accessToken = Request.Headers["Authorization"];
|
||||||
var userId = tokMgr.RetrieveUserIdFromToken(accessToken!);
|
var userId = tokMgr.RetrieveUserIdFromToken(accessToken!);
|
||||||
|
|
||||||
if (userId != -1)
|
if (userId != null)
|
||||||
{
|
{
|
||||||
song!.UserId = userId;
|
song!.UserId = userId.Value;
|
||||||
}
|
}
|
||||||
|
|
||||||
_logger!.LogInformation($"Song title: {song!.Title}");
|
_logger!.LogInformation($"Song title: {song!.Title}");
|
||||||
|
|||||||
@@ -29,5 +29,19 @@ public class AccessLevel
|
|||||||
Level = "Private"
|
Level = "Private"
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
||||||
|
public static bool IsAccessLevelValid(string level) {
|
||||||
|
if (level.Equals(DefaultLevel().Level)) {
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
else if (level.Equals(PrivateLevel().Level)) {
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
else {
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
}
|
||||||
#endregion
|
#endregion
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user