public IActionResult Delete(int id) { var timeZone = _timeZoneService.GetById(id); var currUser = _userService.GetById(Int32.Parse(User.Identity.Name)); if (_userService.CheckIf(currUser, Roles.ROLE_ADMIN) || timeZone.UserId == currUser.Id) { _timeZoneService.Delete(id); return(Ok()); } else { return(StatusCode(403, "Unauthorized! Only 'Admin' or the owner can delete this resource")); } }