using System.Collections.Generic; using System.Linq; using System.Threading.Tasks; using Microsoft.AspNetCore.Http; using Oqtane.Enums; using Oqtane.Extensions; using Oqtane.Infrastructure; using Oqtane.Models; using Oqtane.Security; using Oqtane.Shared; using SZUAbsolventenverein.Module.EventRegistration.Models; using SZUAbsolventenverein.Module.EventRegistration.Repository; namespace SZUAbsolventenverein.Module.EventRegistration.Services { public class ServerEventRegistrationService : IEventRegistrationService { private readonly IEventRepository _EventRepository; private readonly IResponseRepository _ResponseRepository; private readonly INotificationRepository _NotificationRepository; private readonly IUserRepository _UserRepository; private readonly IUserPermissions _userPermissions; private readonly ILogManager _logger; private readonly IHttpContextAccessor _accessor; private readonly Alias _alias; public ServerEventRegistrationService(IEventRepository EventRepository, IResponseRepository ResponseRepository, INotificationRepository NotificationRepository, IUserRepository UserRepository, IUserPermissions userPermissions, ITenantManager tenantManager, ILogManager logger, IHttpContextAccessor accessor) { _EventRepository = EventRepository; _ResponseRepository = ResponseRepository; _NotificationRepository = NotificationRepository; _UserRepository = UserRepository; _userPermissions = userPermissions; _logger = logger; _accessor = accessor; _alias = tenantManager.GetAlias(); } public Task AddEventAsync(Event NewEvent) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, NewEvent.ModuleId, PermissionNames.Edit)) { NewEvent = _EventRepository.AddEvent(NewEvent); _logger.Log(LogLevel.Information, this, LogFunction.Create, "EventRegistration Added {NewEvent}", NewEvent); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized EventRegistration Add Attempt {NewEvent}", NewEvent); NewEvent = null; } return Task.FromResult(NewEvent); } public Task AddResponseAsync(Response Response) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, Response.ModuleId, PermissionNames.View)) { Response = _ResponseRepository.AddResponse(Response); Event currentEvent = _EventRepository.GetEvent(Response.EventRegistrationId); string subject = Response.ResponseType ? $"Du bist erfolgreich für '{currentEvent.Name}' Registriert worden." : $"Du hast erfolgreich für '{currentEvent.Name}' abgesagt."; string body = "Hier kann man die Infos des Events hineinpacken (HTML ist erlaubt)"; SendEventResponseNotification(subject, body); _logger.Log(LogLevel.Information, this, LogFunction.Create, "EventRegistration Added {NewEvent}", Response); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized EventRegistration Add Attempt {NewEvent}", Response); Response = null; } return Task.FromResult(Response); } public Task UpdateResponseAsync(Response Response) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, Response.ModuleId, PermissionNames.View)) { Response = _ResponseRepository.UpdateResponse(Response); Event currentEvent = _EventRepository.GetEvent(Response.EventRegistrationId); string subject = Response.ResponseType ? $"Du bist erfolgreich für '{currentEvent.Name}' Registriert worden." : $"Du hast erfolgreich für '{currentEvent.Name}' abgesagt."; string body = "Hier kann man die Infos des Events hineinpacken (HTML ist erlaubt)"; SendEventResponseNotification(subject, body); _logger.Log(LogLevel.Information, this, LogFunction.Create, "EventRegistration Added {NewEvent}", Response); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized EventRegistration Add Attempt {NewEvent}", Response); Response = null; } return Task.FromResult(Response); } public Task DeleteEventAsync(int EventId, int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.Edit)) { _EventRepository.DeleteEvent(EventId); _logger.Log(LogLevel.Information, this, LogFunction.Delete, "Event Deleted {EventId}", EventId); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized Event Delete Attempt {EventId} {ModuleId}", EventId, ModuleId); } return Task.CompletedTask; } public Task GetEventAsync(int EventId, int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.View)) { return Task.FromResult(_EventRepository.GetEvent(EventId, true)); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized Event Get Attempt {ModuleId}", ModuleId); return null; } } public Task<(Event, Response)> GetEventDetails(int EventId, int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.View)) { Event currentEvent = _EventRepository.GetEvent(EventId); Response rsvp = _ResponseRepository.GetResponse(EventId, _accessor.HttpContext.User.UserId()); return Task.FromResult((currentEvent, rsvp)); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized Event Get Attempt {ModuleId}", ModuleId); return null; } } public Task> GetEventResponses(int EventId, int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.Edit)) { return Task.FromResult(_ResponseRepository.GetResponses(EventId, ModuleId).ToList()); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized Event Response Get Attempt {ModuleId}", ModuleId); return null; } throw new System.NotImplementedException(); } public Task> GetEventsAsync(int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.View)) { return Task.FromResult(_EventRepository.GetEvents(ModuleId).ToList()); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized Events Get Attempt {ModuleId}", ModuleId); return null; } } public Task UpdateEventAsync(Event NewEvent) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, NewEvent.ModuleId, PermissionNames.Edit)) { NewEvent = _EventRepository.UpdateEvent(NewEvent); _logger.Log(LogLevel.Information, this, LogFunction.Update, "Event Updated {NewEvent}", NewEvent); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized Event Update Attempt {NewEvent}", NewEvent); NewEvent = null; } return Task.FromResult(NewEvent); } // TODO: Implement the methods for EventResponses /* public Task GetEventRegistrationAsync(int EventRegistrationId, int ModuleId) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, ModuleId, PermissionNames.View)) { return Task.FromResult(_EventRegistrationRepository.GetEventRegistration(EventRegistrationId)); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized EventRegistration Get Attempt {EventRegistrationId} {ModuleId}", EventRegistrationId, ModuleId); return null; } } public Task AddEventRegistrationAsync(Models.Event EventRegistration) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, EventRegistration.ModuleId, PermissionNames.Edit)) { EventRegistration = _EventRegistrationRepository.AddEventRegistration(EventRegistration); _logger.Log(LogLevel.Information, this, LogFunction.Create, "EventRegistration Added {EventRegistration}", EventRegistration); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized EventRegistration Add Attempt {EventRegistration}", EventRegistration); EventRegistration = null; } return Task.FromResult(EventRegistration); } public Task UpdateEventRegistrationAsync(Models.Event EventRegistration) { if (_userPermissions.IsAuthorized(_accessor.HttpContext.User, _alias.SiteId, EntityNames.Module, EventRegistration.ModuleId, PermissionNames.Edit)) { EventRegistration = _EventRegistrationRepository.UpdateEventRegistration(EventRegistration); _logger.Log(LogLevel.Information, this, LogFunction.Update, "EventRegistration Updated {EventRegistration}", EventRegistration); } else { _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized EventRegistration Update Attempt {EventRegistration}", EventRegistration); EventRegistration = null; } return Task.FromResult(EventRegistration); } }*/ private void SendEventResponseNotification(string subject, string body) { User user = _UserRepository.GetUser(_accessor.HttpContext.User.UserId()); Notification notification = new Notification(_alias.SiteId, user, subject, body); _NotificationRepository.AddNotification(notification); } } }