public IHttpActionResult Get()
{
UserSecurityRoleRepository userSecurityRoleRepository = new UserSecurityRoleRepository(Convert.ToInt32(Request.Headers.GetValues("CurrentUserID").First()));
List <UserSecurityRole> userSecurityRoleList = userSecurityRoleRepository.GetUserSecurityRoles();
return(Json(new { UserSecurityRoles = userSecurityRoleList }));
}
// POST: api/User
public IHttpActionResult Post([FromBody] string text, string credential)
{
bool valid = false;
string identityName = User.Identity.Name;
UserCredential userCredential = SecurityHelper.GetUserCredential(credential);
UserCredential webCredential = SecurityHelper.GetUserCredential(identityName);
if (userCredential.LoginName != webCredential.LoginName)
{
valid = false;
}
else if (SecurityHelper.IsValidLDAPUser(identityName, userCredential.Password))
{
valid = true;
}
if (valid)
{
int userID = Convert.ToInt32(Request.Headers.GetValues("CurrentUserID").First());
UserSecurityRoleRepository usrRoleRepository = new UserSecurityRoleRepository(userID);
return(Json(new { message = "ValidUser", userRoles = usrRoleRepository.GetUserSecurityRoles(userID) }));
}
else
{
return(Json(new { message = "InvalidUser", userRoles = new List <int>() }));
}
}
