22using System . Threading . Tasks ;
33using Microsoft . AspNetCore . Mvc ;
44using Microsoft . EntityFrameworkCore ;
5+ using SimplCommerce . Infrastructure . Data ;
56using SimplCommerce . Module . Core . Extensions ;
7+ using SimplCommerce . Module . Orders . Models ;
68using SimplCommerce . Module . Reviews . Areas . Reviews . ViewModels ;
79using SimplCommerce . Module . Reviews . Data ;
810using SimplCommerce . Module . Reviews . Models ;
@@ -16,11 +18,16 @@ public class ReviewController : Controller
1618 private const int DefaultPageSize = 25 ;
1719
1820 private readonly IReviewRepository _reviewRepository ;
21+ private readonly IRepository < Order > _orderRepository ;
1922 private readonly IWorkContext _workContext ;
2023
21- public ReviewController ( IReviewRepository reviewRepository , IWorkContext workContext )
24+ public ReviewController (
25+ IReviewRepository reviewRepository ,
26+ IRepository < Order > orderRepository ,
27+ IWorkContext workContext )
2228 {
2329 _reviewRepository = reviewRepository ;
30+ _orderRepository = orderRepository ;
2431 _workContext = workContext ;
2532 }
2633
@@ -31,6 +38,14 @@ public async Task<IActionResult> AddReview(ReviewForm model)
3138 {
3239 var user = await _workContext . GetCurrentUser ( ) ;
3340 model . ReviewerName = user . FullName ; // Otherwise ReviewerName is null
41+
42+ if ( ! await _orderRepository . Query ( ) . AnyAsync ( o => o . CustomerId == user . Id && o . OrderItems . Any ( i => i . ProductId == model . EntityId ) ) )
43+ {
44+ ModelState . AddModelError ( "*" , "You can only review products you have purchased." ) ;
45+
46+ return PartialView ( "_ReviewForm" , model ) ;
47+ }
48+
3449 var review = new Review
3550 {
3651 Rating = model . Rating ,
@@ -47,6 +62,7 @@ public async Task<IActionResult> AddReview(ReviewForm model)
4762
4863 return PartialView ( "_ReviewFormSuccess" , model ) ;
4964 }
65+
5066 return PartialView ( "_ReviewForm" , model ) ;
5167 }
5268
0 commit comments