X-Git-Url: https://git.dlugolecki.net.pl/?a=blobdiff_plain;f=Projects%2FControllers%2FProjectsController.cs;h=ab93cc85bce70c71f4743b01ca85b7a49f649323;hb=HEAD;hp=73205a873fce7718732831287ff24ec44f7b6c20;hpb=4a18d9cd9ac69fd85e12ff583235537f90561efd;p=wsti_pai.git

diff --git a/Projects/Controllers/ProjectsController.cs b/Projects/Controllers/ProjectsController.cs
index 73205a8..ab93cc8 100644
--- a/Projects/Controllers/ProjectsController.cs
+++ b/Projects/Controllers/ProjectsController.cs
@@ -36,6 +36,7 @@ namespace Projects.Models
         }
 
         // GET: Projects/Create
+        [Authorize(Roles = "admin")]
         public ActionResult Create()
         {
             ViewBag.user_id = new SelectList(db.Users, "id", "login");
@@ -45,12 +46,15 @@ namespace Projects.Models
         // POST: Projects/Create
         // To protect from overposting attacks, please enable the specific properties you want to bind to, for 
         // more details see http://go.microsoft.com/fwlink/?LinkId=317598.
+        [Authorize(Roles = "admin")]
         [HttpPost]
         [ValidateAntiForgeryToken]
-        public ActionResult Create([Bind(Include = "id,user_id,name,description,created_at,updated_at")] Project project)
+        public ActionResult Create([Bind(Include = "id,user_id,name,description")] Project project)
         {
             if (ModelState.IsValid)
             {
+                project.created_at = DateTime.Now;
+                project.updated_at = DateTime.Now;
                 db.Projects.Add(project);
                 db.SaveChanges();
                 return RedirectToAction("Index");
@@ -61,6 +65,7 @@ namespace Projects.Models
         }
 
         // GET: Projects/Edit/5
+        [Authorize(Roles = "admin")]
         public ActionResult Edit(int? id)
         {
             if (id == null)
@@ -79,12 +84,14 @@ namespace Projects.Models
         // POST: Projects/Edit/5
         // To protect from overposting attacks, please enable the specific properties you want to bind to, for 
         // more details see http://go.microsoft.com/fwlink/?LinkId=317598.
+        [Authorize(Roles = "admin")]
         [HttpPost]
         [ValidateAntiForgeryToken]
-        public ActionResult Edit([Bind(Include = "id,user_id,name,description,created_at,updated_at")] Project project)
+        public ActionResult Edit([Bind(Include = "id,user_id,name,description,created_at")] Project project)
         {
             if (ModelState.IsValid)
             {
+                project.updated_at = DateTime.Now;
                 db.Entry(project).State = EntityState.Modified;
                 db.SaveChanges();
                 return RedirectToAction("Index");
@@ -94,6 +101,7 @@ namespace Projects.Models
         }
 
         // GET: Projects/Delete/5
+        [Authorize(Roles = "admin")]
         public ActionResult Delete(int? id)
         {
             if (id == null)
@@ -109,6 +117,7 @@ namespace Projects.Models
         }
 
         // POST: Projects/Delete/5
+        [Authorize(Roles = "admin")]
         [HttpPost, ActionName("Delete")]
         [ValidateAntiForgeryToken]
         public ActionResult DeleteConfirmed(int id)