public IHttpActionResult Get() { UserSecurityRoleRepository userSecurityRoleRepository = new UserSecurityRoleRepository(Convert.ToInt32(Request.Headers.GetValues("CurrentUserID").First())); List <UserSecurityRole> userSecurityRoleList = userSecurityRoleRepository.GetUserSecurityRoles(); return(Json(new { UserSecurityRoles = userSecurityRoleList })); }
// POST: api/User public IHttpActionResult Post([FromBody] string text, string credential) { bool valid = false; string identityName = User.Identity.Name; UserCredential userCredential = SecurityHelper.GetUserCredential(credential); UserCredential webCredential = SecurityHelper.GetUserCredential(identityName); if (userCredential.LoginName != webCredential.LoginName) { valid = false; } else if (SecurityHelper.IsValidLDAPUser(identityName, userCredential.Password)) { valid = true; } if (valid) { int userID = Convert.ToInt32(Request.Headers.GetValues("CurrentUserID").First()); UserSecurityRoleRepository usrRoleRepository = new UserSecurityRoleRepository(userID); return(Json(new { message = "ValidUser", userRoles = usrRoleRepository.GetUserSecurityRoles(userID) })); } else { return(Json(new { message = "InvalidUser", userRoles = new List <int>() })); } }