public async Task <IActionResult> GetById(long id) { // check if requester is allowed to read the reservation if (!await _permissionService.CanReadReservation(id, HttpContext.GetUserIdFromToken())) { return(Forbid()); } return(Ok(await _reservationService.GetReservationById(id))); }