using System.Web;
using System.Web.Mvc;

namespace EnVisage.Code
{
    public class AreaSecurityAttribute : AuthorizeAttribute
    {
        public Areas area { get; set; }
        public AccessLevel level { get; set; }

        protected override bool AuthorizeCore(HttpContextBase httpContext)
        {
            var isAuthorized = base.AuthorizeCore(httpContext);
            if (!isAuthorized)
            {
                return false;
            }

            return HtmlHelpers.HtmlHelpers.CheckSecurityObjectPermission(null, area, level);
        }
    }
}