public HttpResponseMessage Delete([FromUri] string token, [FromUri] string id_user)
{
try
{
if (_authService.CheckAuthorization(token) == true)
{
if (_authService.CurrentUser.Id != id_user)
{
return(Request.CreateResponse(HttpStatusCode.Forbidden)); //probojemy usunac innego uzytkownika niz my sami
}
else
{
UsersRepo.RemoveUser(id_user);
TokenBase.RemoveToken(token); //usunelismy sie = tracimy autentykację
return(Request.CreateResponse(HttpStatusCode.OK));
}
}
else
{
return(Request.CreateResponse(HttpStatusCode.Unauthorized));
}
}
catch (Exception e)
{
WebApiApplication.GlobalLogger.Error(Request + e.ToString());
var err = new HttpError("Error while removing user");
return(Request.CreateResponse(HttpStatusCode.InternalServerError, err));
}
}