using Back.Services; using Microsoft.AspNetCore.Http; using Microsoft.AspNetCore.Mvc; using Shared.DTOs.Serch; using Shared.DTOs; using System.Xml.Linq; namespace Back.Controllers { [Route("api/[controller]")] [ApiController] public class CODController : ControllerBase { private readonly ServCOD _servCOD; private readonly servUser _servUser; public CODController(ServCOD servCOD, servUser servUser) { _servCOD = servCOD; _servUser = servUser; } [HttpPost("GetAll")] public async Task?>> GetAll([FromBody] ItemSerchGetCOD itemSerch) { var claim = HttpContext.User.Claims.First(c => c.Type == "UserID"); var UserID = claim.Value; var user = await _servUser.GetUserByUserID(Convert.ToInt32(UserID)); // if (!await _checkPermission.AllowSYSGetCOD(Convert.ToInt32(UserID), user.RolUsers.First().CompanyID)) return Forbid("شما دسترسی به خواندن اطلاعات کالا را نداربد"); return Ok(await _servCOD.GetCODs(user.RolUsers.First().CompanyID, itemSerch)); } [HttpGet("GetUnits")] public async Task>> GetUnits() { return Ok(await _servCOD.GetUnits()); } } }