public override void OnAuthorization(AuthorizationContext filterContext) { if (!filterContext.HttpContext.Request.IsAuthenticated) { filterContext.Result = new RedirectToRouteResult( new System.Web.Routing.RouteValueDictionary( new { controller = "users", action = "login" })); } else { int companyId = 0; Int32.TryParse(HttpContext.Current.Request.Url.Segments[2].TrimEnd('/'), out companyId); string userId = HttpContext.Current.User.Identity.GetUserId(); if (CompanyPersonService.Verify(companyId, userId)) { base.OnAuthorization(filterContext); } else { filterContext.Result = new RedirectToRouteResult( new System.Web.Routing.RouteValueDictionary( new { controller = "companies", action = companyId })); } } }
public override void OnAuthorization(AuthorizationContext filterContext) { if (!filterContext.HttpContext.Request.IsAuthenticated) { filterContext.Result = new RedirectToRouteResult( new System.Web.Routing.RouteValueDictionary( new { controller = "users", action = "login" })); } else { string userId = HttpContext.Current.User.Identity.GetUserId(); if (CompanyPersonService.VerifyHasCompany(userId)) { base.OnAuthorization(filterContext); } else { filterContext.Result = new RedirectToRouteResult( new System.Web.Routing.RouteValueDictionary( new { controller = "companies", action = "create" })); } } }