@POST
public Response create(Activitycategory object, @HeaderParam("Authorization") String token) {
List<String> rights = UserController.instance().getAccessRights(token);
if (!rights.contains("Administrator") || !rights.contains("Manager"))
return respond(Response.status(403));
return respond(Response.ok(ActivityCategoryController.instance().create(object)));
}
@DELETE
@Path("/{id:[0-9][0-9]*}")
public Response delete(@PathParam("id") int id, @HeaderParam("Authorization") String token) {
List<String> rights = UserController.instance().getAccessRights(token);
if (!rights.contains("Administrator") || !rights.contains("Manager"))
return respond(Response.status(403));
ActivityCategoryController.instance().delete(id);
return respond(Response.ok());
}