// Review: Belongs to an entity public bool IsUserAuthorized(string userName, string sessionName) { SessionInstance s = _sessionRepo.GetSession(sessionName); if (NoPasswordRequired(s)) { return(true); } return(_connRepo.GetActiveConnectionsInSession(sessionName) .Any(conn => conn.ClientName == userName)); }