public IActionResult EditPicture([FromBody] PictureChange changeData) { if (userGet.HaveUser(HttpContext)) { User user = userGet.GetUser(HttpContext); Picture picture = pictureRepository.GetPicture(changeData.Id); if (picture == null) { return(BadRequest("Not existing picture!")); } if (picture.Owner == user) { changeData.Owner = user; Success result = ValidateAccess(changeData, picture); switch (result) { case Success.Successfull: pictureRepository.ChangePictureData(changeData); return(Ok()); case Success.FailedByWrongAccessFolder: return(BadRequest("Wrong access picture for " + picture.Folder.FolderName + " folder!")); case Success.FailedByWrongAccessNewFolder: return(BadRequest("Wrong access picture for " + changeData.FolderName + " folder!")); case Success.FailedByNotExistFolderName: return(BadRequest("Don't have " + changeData.FolderName + " folder")); } } return(BadRequest("Not your picture!")); } return(Unauthorized()); }