public ActionResult Delete(string username)
{
var user = _authService.ParsingClaims(HttpContext.User.Claims, out var roles);
if (username != user)
{
if (!roles.Contains("admin"))
{
return(BadRequest("非授权用户,无法删除"));
}
}
if (_authService.DeleteUserData(username) is null)
{
return(BadRequest("删除失败,检查待删除用户名"));
}
return(Ok("删除成功"));
}
