public ActionResult Delete(string username) { var user = _authService.ParsingClaims(HttpContext.User.Claims, out var roles); if (username != user) { if (!roles.Contains("admin")) { return(BadRequest("非授权用户,无法删除")); } } if (_authService.DeleteUserData(username) is null) { return(BadRequest("删除失败,检查待删除用户名")); } return(Ok("删除成功")); }