public HttpResponseMessage Profile() { try { var user = User.Identity.Name; if (user != null) { var result = context.Get(user); var capabilitites = new List <string>(); if (result.SYS_Capability_Account != null && result.SYS_Capability_Account.Count > 0) { foreach (var cap in result.SYS_Capability_Account) { capabilitites.Add(cap.Capability); } } var profile = new Profile { DisplayName = result.DisplayName, Username = result.Username, Role = result.Role, Capabilities = capabilitites }; // xóa pass result.Password = null; return(Request.CreateResponse(HttpStatusCode.OK, profile)); } else { return(Request.CreateResponse(HttpStatusCode.Unauthorized, "Không tìm thấy định danh")); } } catch (Exception e) { return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, e.Message)); } }