public async Task <ActionResult> PermitSignIn([FromBody] QRToken token) { var userId = User.FindFirst(ClaimTypes.NameIdentifier)?.Value; if (!int.TryParse(userId, out int uid)) { return(BadRequest(new { error = "Unknow user ID." })); } var item = await _repo.PermitByToken(token.Token, uid); if (item == null) { return(BadRequest(new { error = "No such code or expired." })); } return(Ok()); }