public IActionResult TeacherSub(string id) { string idDec = Encryption.SymmetricDecrypt(id); Guid newGuid = Guid.Parse(idDec); var list = _subService.GetSubmissions(newGuid); return(View(list)); }
public override void OnActionExecuting(ActionExecutingContext context) { try { string email = context.HttpContext.User.Identity.Name; ISubmissionsService subService = (ISubmissionsService)context.HttpContext.RequestServices.GetService(typeof(ISubmissionsService)); var submission = subService.GetSubmissions(email); foreach (var sub in submission) { if (sub.Email != email) { context.Result = new UnauthorizedObjectResult("Access Denied"); } } } catch (Exception ex) { context.Result = new BadRequestObjectResult("Bad Request"); } }