Episerver Commerce: Creating a new block

Refer to this blog post: https://world.optimizely.com/blogs/david-harlow/dates/2018/3/extending-commerce---content-area-functionality/

By default, content areas in Episerver commerce items such as products and variants don't display the option for creating a new block, and only allows for blocks to be dragged in, as seen below.




However, an extremely simple solution to change this default behavior is to inherit from IResourceable on your product/variant which will require the interface member ContentAssetsID to be declared which can simply be scaffolded to false, and this will be all the code required to display the content area as expected!

public class FashionProduct : ProductContent, IResourceable
{
    [Editable(false)]
    [ScaffoldColumn(false)]
    public virtual string ProductContentAssetId { get; set; }

    [Ignore]
    public Guid ContentAssetsID
    {
        get { return !string.IsNullOrEmpty(ProductContentAssetId) ? new Guid(NodeContentAssetId) :                 Guid.Empty; }
        set { ProductContentAssetId = value.ToString(); }
    }

    [CultureSpecific]
    [Display(Name = "Test content area", Order = 2)]
    [AllowedTypes(new[] { typeof(IContentData) })]
    public virtual ContentArea TestContentArea { get; set; }
}



But there could be issue with permission when another user is not an administrator try to create a block:
EPiServer.Core.AccessDeniedException: Access was denied to content 623. The required access level was "Create, Publish".
at EPiServer.Core.Internal.DefaultContentRepository.CheckSufficientAccess(ContentProvider provider, ContentReference contentLink, AccessLevel access)
at EPiServer.Core.Internal.DefaultContentRepository.Save(IContent content, SaveAction action, AccessLevel access)
at EPiServer.Cms.Shell.Service.Internal.ContentService.Save(IContent content, SaveAction saveAction, AccessLevel accessLevel)
at EPiServer.Cms.Shell.Service.Internal.ContentService.Save(IContent content, SaveAction saveAction)
at EPiServer.Cms.Shell.UI.Rest.ContentChangeManager.CreateContent(ContentReference parentLink, Int32 contentTypeId, Nullable`1 resourceFolderId, Boolean createAsLocalAsset, String name, IDictionary`2 properties, SaveAction saveAction)
at EPiServer.Cms.Shell.UI.Rest.ContentChangeManager.CreateContent(ContentReference parentLink, Int32 contentTypeId, Nullable`1 resourceFolderId, Boolean createAsLocalAsset, String name, IDictionary`2 properties, Boolean autoPublish)
at EPiServer.Cms.Shell.UI.Rest.ContentChangeManager.Create(ContentReference parentLink, Int32 contentTypeId, Nullable`1 resourceFolderId, Boolean createAsLocalAsset, String name, IDictionary`2 properties, Boolean autoPublish)
at EPiServer.Cms.Shell.UI.Rest.Internal.ContentDataStore.Post(PostContentModel entity)
In the developer tools there's an error (500 or 403) when sending POST to /EPiServer/cms/Stores/contentdata/. There's nothing interesting in the response as error handling causes it to just say "something went wrong"

If you check that content in the database, it's Content Assets Folder with content type id is 4



As Quan Mai pointed out, it became clear that products (and entries in general) do not have their own ACL settings but inherit from their direct parents. To solve this problem, we would need to implement IContentSecurable to the entries and return the node's security descriptor:
public class FashionProduct : ProductContent, IContentSecurable
{
    public IContentSecurityDescriptor GetContentSecurityDescriptor() =>                                     this.GetParentNode().GetContentSecurityDescriptor();
}

public static class EntryContentBaseExtensions
{
    public static NodeContent GetParentNode(this EntryContentBase entryContentBase)
    {
        return ServiceLocator.Current.GetInstance<IContentLoader>().Get<NodeContent>                      (entryContentBase.ParentLink);
     }
}




Comments

Post a Comment

Popular posts from this blog

Optimizely Content Graph: minimal setup for testing

Image
 1. Create a test page: [ContentType(DisplayName = "Test Page", GUID = "462d1812-7385-42c3-8073-c1b7481e7b21", Description = "TestPage", AvailableInEditMode = true, GroupName = GroupNames.Content)] public class TestPage : PageData { [CultureSpecific] [UIHint(UIHint.Textarea)] [Display(Name = "Test", GroupName = SystemTabNames.Content, Order = 1)] public virtual string Test { get; set; } } 2. Add this in Startup services.AddContentGraph(configureOptions: options => { options.SynchronizationEnabled = false; options.Include.ContentTypes = new string[] { typeof(TestPage).Name, }; options.OnlySyncContentTypesInWhitelistToSchema = true; options.ContentVersionSyncMode = Optimizely.ContentGraph.Cms.Configuration.ContentVersionSyncMode.PublishedOnly; }); 3. Create a test page in UI    4. Run the index job again {      "took": 0,  ...
Read more

Episerver ServiceAPI: Example of how-to properly call the media upload

Image
For the example of how-to properly call the media upload, you can refer to my Postman collection: https://github.com/KhanhPham2411/EpiserverAPI_PostmanCollection/blob/main/ServiceAPI/ServiceAPI_Collections.json   For the detail steps: Copy the raw content to Postman: https://raw.githubusercontent.com/KhanhPham2411/EpiserverAPI_PostmanCollection/main/ServiceAPI/ServiceAPI_Collections.json   2. Get ServiceAPI NetCore Token   3. Post to Assets/Import Example media file: https://github.com/KhanhPham2411/EpiserverAPI_PostmanCollection/blob/main/ServiceAPI/01-CreateMediaWithBlob.zip 4. To verify your import is working, use that task id to get task log:      
Read more

SameSite Cookie login troubleshooting

Image
  We will use network tab to capture redirect request when logging in to found the root cause F12 to open developer console and switch to Network tab Login to the Commerce Manger site => We would focus on the request that has Status 302 and Initiator CommerceManager.aspx Click on that request and switch to Cookies tab => Response Cookie is  yellow  mean it has been blocked and that is why it keep showing you the login page 🙂 Obviously, as it's blocked, no cookies have been used for the next request So how do we resolve it, we saw 2 exclamation mark in columns Secure and SamesSite, just  hover  on it and there will be a  hint  to solve :v When hover on SameSite exclamation mark, there will be a message "This Set-Cookie didn't specify a "SameSite" attribute and was defaulted to "SameSite=Lax", and was blocked because it came from a cross-site response which was not the response to top-level navigation. The Set-Cookie had to have been set with ...
Read more