updated check for the entity state

AJEETX · AJEETX · commit 6a87dc45d7a0 · 2021-03-09T10:25:33.000+11:00
diff --git a/src/Api/Endpoints/V1/Products/Create.cs b/src/Api/Endpoints/V1/Products/Create.cs
@@ -37,18 +37,21 @@ public async Task<IActionResult> PostAsync(Product product, string culture = "en
         {
             if (!ModelState.IsValid) return BadRequest(ModelState.GetErrorMessages());
 
-            var entity = await _db.Products.AddAsync(product);
+            var addedProduct = await _db.Products.AddAsync(product);
+
+            var stateAded = addedProduct.State == Microsoft.EntityFrameworkCore.EntityState.Added;
+
             var count = await _db.SaveChangesAsync();
 
             var responseProduct = new ProductDTO
             {
-                DeliveryPrice = entity.Entity.DeliveryPrice,
-                Description = entity.Entity.Description,
-                Id = entity.Entity.Id,
-                Name = entity.Entity.Name,
-                Price = entity.Entity.Price
+                DeliveryPrice = addedProduct.Entity.DeliveryPrice,
+                Description = addedProduct.Entity.Description,
+                Id = addedProduct.Entity.Id,
+                Name = addedProduct.Entity.Name,
+                Price = addedProduct.Entity.Price
             };
-            return count == 1 ? CreatedAtRoute(RouteNames.GetByIdAsync, new { id = responseProduct.Id, culture }, responseProduct) : StatusCode(StatusCodes.Status500InternalServerError);
+            return stateAded && count == 1 ? CreatedAtRoute(RouteNames.GetByIdAsync, new { id = responseProduct.Id, culture }, responseProduct) : StatusCode(StatusCodes.Status500InternalServerError);
         }
     }
 }
diff --git a/src/Api/Endpoints/V1/Products/Delete.cs b/src/Api/Endpoints/V1/Products/Delete.cs
@@ -1,6 +1,7 @@
 ﻿using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
+using Microsoft.EntityFrameworkCore;
 using System;
 using System.Threading.Tasks;
 using Xero.Demo.Api.Domain.Extension;
@@ -10,9 +11,6 @@ namespace Xero.Demo.Api.Endpoints.V1.Products
 {
     public partial class ProductsController
     {
-        private static int rowCountDeleted = 0;
-        private readonly bool deleted = rowCountDeleted != 1;
-
         /// <summary>
         /// Delete product by sending valid JWT token provided through only 'api/{culture}/v1/Login/Admin' endpoint
         /// </summary>
@@ -32,11 +30,12 @@ public async Task<IActionResult> DeleteAsync(Guid id, string culture = "en-US")
             var product = await _db.Products.FindAsync(id);
 
             if (product == default) return NotFound(string.Format(CustomException.NotFoundException, id));
+            var removedProduct = _db.Products.Remove(product);
+            var stateDeleted = removedProduct.State == EntityState.Deleted;
 
-            _db.Products.Remove(product);
-            rowCountDeleted = await _db.SaveChangesAsync();
+            var rowCountDeleted = await _db.SaveChangesAsync();
 
-            return deleted ? NoContent() : StatusCode(StatusCodes.Status500InternalServerError);
+            return stateDeleted && rowCountDeleted == 1 ? NoContent() : StatusCode(StatusCodes.Status500InternalServerError);
         }
     }
 }
diff --git a/src/Api/Endpoints/V1/Products/Read.cs b/src/Api/Endpoints/V1/Products/Read.cs
@@ -46,14 +46,15 @@ public async Task<IActionResult> GetAsync(string culture = "en-US")
         /// Get product by id by sending valid JWT token provided through 'api/{culture}/v1/Login/Admin' or 'api/en-US/v1/Login/Editor' or 'api/{culture}/v1/Login/Reader'
         /// </summary>
         /// <param name="id">Enter the id of product</param>
+        /// <param name="culture"></param>
         /// <returns>Returns list of products</returns>
         [Authorize(Policy = Policy.ShouldBeAReader)]
         [ApiVersion(ApiVersionNumbers.V1)]
         [HttpGet("{id}", Name = RouteNames.GetByIdAsync)]
         [ProducesResponseType(StatusCodes.Status200OK, Type = typeof(ProductDTO))]
         [ProducesResponseType(StatusCodes.Status400BadRequest)]
         [ProducesResponseType(StatusCodes.Status500InternalServerError)]
-        public async Task<IActionResult> GetByIdAsync(Guid id)
+        public async Task<IActionResult> GetByIdAsync(Guid id, string culture = "en-US")
         {
             if (!ModelState.IsValid || id == Guid.Empty) return BadRequest(ModelState.GetErrorMessages());
 
diff --git a/src/Api/Endpoints/V1/Products/Update.cs b/src/Api/Endpoints/V1/Products/Update.cs
@@ -1,6 +1,7 @@
 ﻿using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
+using Microsoft.EntityFrameworkCore;
 using System;
 using System.Threading.Tasks;
 using Xero.Demo.Api.Domain.Extension;
@@ -32,10 +33,13 @@ public async Task<IActionResult> PutAsync(Guid id, Product product, string cultu
 
             if (savedProduct == default) return NotFound(string.Format(CustomException.NotFoundException, id));
 
-            _db.Products.Update(product);
+            var updatedProduct = _db.Products.Update(product);
+
+            var stateUpdated = updatedProduct.State == EntityState.Modified;
+
             var count = await _db.SaveChangesAsync();
 
-            return count == 1 ? NoContent() : StatusCode(StatusCodes.Status500InternalServerError);
+            return stateUpdated && count == 1 ? NoContent() : StatusCode(StatusCodes.Status500InternalServerError);
         }
     }
 }
diff --git a/src/Api/Product.db b/src/Api/Product.db
diff --git a/src/Api/Xero.Demo.Infrastructure/Security/ShouldBeAReaderAuthorizationHandler.cs b/src/Api/Xero.Demo.Infrastructure/Security/ShouldBeAReaderAuthorizationHandler.cs
@@ -19,7 +19,7 @@ protected override Task HandleRequirementAsync(AuthorizationHandlerContext conte
 
             var claim = context.User.Claims.FirstOrDefault(x => x.Type == ClaimTypes.Role);
 
-            if (claim.Value == Roles.Reader) context.Succeed(requirement);
+            if (claim.Value == Roles.Admin || claim.Value == Roles.Editor || claim.Value == Roles.Reader) context.Succeed(requirement);
 
             return Task.CompletedTask;
         }
diff --git a/src/Api/Xero.Demo.Infrastructure/Security/ShouldBeAnAdminRequirementHandler.cs b/src/Api/Xero.Demo.Infrastructure/Security/ShouldBeAnAdminRequirementHandler.cs
@@ -19,7 +19,7 @@ protected override Task HandleRequirementAsync(AuthorizationHandlerContext conte
 
             var claim = context.User.Claims.FirstOrDefault(x => x.Type == ClaimTypes.Role);
 
-            if (claim.Value == Roles.Admin || claim.Value == Roles.Editor || claim.Value == Roles.Reader) context.Succeed(requirement);
+            if (claim.Value == Roles.Admin) context.Succeed(requirement);
 
             return Task.CompletedTask;
         }

Original file line number	Diff line number	Diff line change
`@@ -37,18 +37,21 @@ public async Task<IActionResult> PostAsync(Product product, string culture = "en`
`37`	`37`	`{`
`38`	`38`	`if (!ModelState.IsValid) return BadRequest(ModelState.GetErrorMessages());`
`39`	`39`
`40`		`- var entity = await _db.Products.AddAsync(product);`
	`40`	`+ var addedProduct = await _db.Products.AddAsync(product);`
	`41`	`+`
	`42`	`+ var stateAded = addedProduct.State == Microsoft.EntityFrameworkCore.EntityState.Added;`
	`43`	`+`
`41`	`44`	`var count = await _db.SaveChangesAsync();`
`42`	`45`
`43`	`46`	`var responseProduct = new ProductDTO`
`44`	`47`	`{`
`45`		`- DeliveryPrice = entity.Entity.DeliveryPrice,`
`46`		`- Description = entity.Entity.Description,`
`47`		`- Id = entity.Entity.Id,`
`48`		`- Name = entity.Entity.Name,`
`49`		`- Price = entity.Entity.Price`
	`48`	`+ DeliveryPrice = addedProduct.Entity.DeliveryPrice,`
	`49`	`+ Description = addedProduct.Entity.Description,`
	`50`	`+ Id = addedProduct.Entity.Id,`
	`51`	`+ Name = addedProduct.Entity.Name,`
	`52`	`+ Price = addedProduct.Entity.Price`
`50`	`53`	`};`
`51`		`- return count == 1 ? CreatedAtRoute(RouteNames.GetByIdAsync, new { id = responseProduct.Id, culture }, responseProduct) : StatusCode(StatusCodes.Status500InternalServerError);`
	`54`	`+ return stateAded && count == 1 ? CreatedAtRoute(RouteNames.GetByIdAsync, new { id = responseProduct.Id, culture }, responseProduct) : StatusCode(StatusCodes.Status500InternalServerError);`
`52`	`55`	`}`
`53`	`56`	`}`
`54`	`57`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,7 @@`
`1`	`1`	`using Microsoft.AspNetCore.Authorization;`
`2`	`2`	`using Microsoft.AspNetCore.Http;`
`3`	`3`	`using Microsoft.AspNetCore.Mvc;`
	`4`	`+using Microsoft.EntityFrameworkCore;`
`4`	`5`	`using System;`
`5`	`6`	`using System.Threading.Tasks;`
`6`	`7`	`using Xero.Demo.Api.Domain.Extension;`
`@@ -10,9 +11,6 @@ namespace Xero.Demo.Api.Endpoints.V1.Products`
`10`	`11`	`{`
`11`	`12`	`public partial class ProductsController`
`12`	`13`	`{`
`13`		`- private static int rowCountDeleted = 0;`
`14`		`- private readonly bool deleted = rowCountDeleted != 1;`
`15`		`-`
`16`	`14`	`/// <summary>`
`17`	`15`	`/// Delete product by sending valid JWT token provided through only 'api/{culture}/v1/Login/Admin' endpoint`
`18`	`16`	`/// </summary>`
`@@ -32,11 +30,12 @@ public async Task<IActionResult> DeleteAsync(Guid id, string culture = "en-US")`
`32`	`30`	`var product = await _db.Products.FindAsync(id);`
`33`	`31`
`34`	`32`	`if (product == default) return NotFound(string.Format(CustomException.NotFoundException, id));`
	`33`	`+ var removedProduct = _db.Products.Remove(product);`
	`34`	`+ var stateDeleted = removedProduct.State == EntityState.Deleted;`
`35`	`35`
`36`		`- _db.Products.Remove(product);`
`37`		`- rowCountDeleted = await _db.SaveChangesAsync();`
	`36`	`+ var rowCountDeleted = await _db.SaveChangesAsync();`
`38`	`37`
`39`		`- return deleted ? NoContent() : StatusCode(StatusCodes.Status500InternalServerError);`
	`38`	`+ return stateDeleted && rowCountDeleted == 1 ? NoContent() : StatusCode(StatusCodes.Status500InternalServerError);`
`40`	`39`	`}`
`41`	`40`	`}`
`42`	`41`	`}`
Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ protected override Task HandleRequirementAsync(AuthorizationHandlerContext conte`
`19`	`19`
`20`	`20`	`var claim = context.User.Claims.FirstOrDefault(x => x.Type == ClaimTypes.Role);`
`21`	`21`
`22`		`- if (claim.Value == Roles.Reader) context.Succeed(requirement);`
	`22`	`+ if (claim.Value == Roles.Admin \|\| claim.Value == Roles.Editor \|\| claim.Value == Roles.Reader) context.Succeed(requirement);`
`23`	`23`
`24`	`24`	`return Task.CompletedTask;`
`25`	`25`	`}`