public IHttpActionResult GetOrganization(string organizationId) { if (string.IsNullOrEmpty(organizationId)) { return(BadRequest()); } string userId = User.Identity.GetUserId(); var user = _userRepository.Find(userId); if (user == null || !user.Organizations.Contains(organizationId)) { return(Unauthorized()); } var results = _inviteRepository.All() .Where(t => t.OrganizationId == organizationId); return(Ok(results)); }