public IActionResult TeacherSub(string id)
{
string idDec = Encryption.SymmetricDecrypt(id);
Guid newGuid = Guid.Parse(idDec);
var list = _subService.GetSubmissions(newGuid);
return(View(list));
}
public override void OnActionExecuting(ActionExecutingContext context)
{
try
{
string email = context.HttpContext.User.Identity.Name;
ISubmissionsService subService = (ISubmissionsService)context.HttpContext.RequestServices.GetService(typeof(ISubmissionsService));
var submission = subService.GetSubmissions(email);
foreach (var sub in submission)
{
if (sub.Email != email)
{
context.Result = new UnauthorizedObjectResult("Access Denied");
}
}
}
catch (Exception ex)
{
context.Result = new BadRequestObjectResult("Bad Request");
}
}
