using Microsoft.AspNetCore.Http; using Oqtane.Enums; using Oqtane.Extensions; using Oqtane.Infrastructure; using Oqtane.Models; using Oqtane.Repository; using Oqtane.Security; using Oqtane.Shared; using System.Collections.Generic; using System.Linq; using System.Reflection; using System.Threading.Tasks; using SZUAbsolventenverein.Module.AdminModules.Models; using SZUAbsolventenverein.Module.AdminModules.Repository; namespace SZUAbsolventenverein.Module.AdminModules.Services { public class ServerAdminModulesService : IAdminModulesService { private readonly IAdminModulesRepository _AdminModulesRepository; private readonly IUserPermissions _userPermissions; private readonly IRoleRepository _roleRepository; private readonly IUserRepository _userRepository; private readonly IUserRoleRepository _userRoleRepository; private readonly ILogManager _logger; private readonly IHttpContextAccessor _accessor; private readonly Alias _alias; public ServerAdminModulesService(IAdminModulesRepository AdminModulesRepository, IUserPermissions userPermissions, IRoleRepository roleRepository, IUserRepository userRepository, IUserRoleRepository userRoleRepository, ITenantManager tenantManager, ILogManager logger, IHttpContextAccessor accessor) { _AdminModulesRepository = AdminModulesRepository; _userPermissions = userPermissions; _roleRepository = roleRepository; _userRepository = userRepository; _userRoleRepository = userRoleRepository; _logger = logger; _accessor = accessor; _alias = tenantManager.GetAlias(); } public Task> GetAdminModulessAsync(int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.View)) { return Task.FromResult(_AdminModulesRepository.GetAdminModuless(ModuleId).ToList()); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized AdminModules Get Attempt {ModuleId}", ModuleId); return null; } } public Task GetAdminModulesAsync(int AdminModulesId, int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.View)) { return Task.FromResult(_AdminModulesRepository.GetAdminModules(AdminModulesId)); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized AdminModules Get Attempt {AdminModulesId} {ModuleId}", AdminModulesId, ModuleId); return null; } } public Task AddAdminModulesAsync(Models.AdminModules AdminModules) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, AdminModules.ModuleId, PermissionNames.Edit)) { AdminModules = _AdminModulesRepository.AddAdminModules(AdminModules); _logger.Log(LogLevel.Information, this, LogFunction.Create, "AdminModules Added {AdminModules}", AdminModules); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized AdminModules Add Attempt {AdminModules}", AdminModules); AdminModules = null; } return Task.FromResult(AdminModules); } public Task UpdateAdminModulesAsync(Models.AdminModules AdminModules) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, AdminModules.ModuleId, PermissionNames.Edit)) { AdminModules = _AdminModulesRepository.UpdateAdminModules(AdminModules); _logger.Log(LogLevel.Information, this, LogFunction.Update, "AdminModules Updated {AdminModules}", AdminModules); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized AdminModules Update Attempt {AdminModules}", AdminModules); AdminModules = null; } return Task.FromResult(AdminModules); } public Task DeleteAdminModulesAsync(int AdminModulesId, int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.Edit)) { _AdminModulesRepository.DeleteAdminModules(AdminModulesId); _logger.Log(LogLevel.Information, this, LogFunction.Delete, "AdminModules Deleted {AdminModulesId}", AdminModulesId); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized AdminModules Delete Attempt {AdminModulesId} {ModuleId}", AdminModulesId, ModuleId); } return Task.CompletedTask; } public Task GetUsercountInRole(EmailFields EmailFields) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, EmailFields.ModuleId, PermissionNames.View)) { return Task.FromResult(_userRoleRepository.GetUserRoles(EmailFields.Role.Name, _alias.SiteId).Where(ur => ur.Role == EmailFields.Role).Select(ur => ur.UserId).Distinct().Count()); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized AdminModules Get Roles Attempt {AdminModulesId} {ModuleId}", EmailFields.AdminModulesId, EmailFields.ModuleId); return null; } } public Task SendMassNotification(EmailFields EmailFields) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, EmailFields.ModuleId, PermissionNames.View)) { _userRoleRepository.GetUserRoles(_accessor.HttpContext.User.UserId(), _alias.SiteId).Where(ur => ur.Role == EmailFields.Role).Select(ur => ur.UserId); return null; } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized AdminModules Get Roles Attempt {AdminModulesId} {ModuleId}", EmailFields.AdminModulesId, EmailFields.ModuleId); return null; } } } }