เพิ่มคิวรี่ ตรวจสอบสิทธิ ของหน้า ทำข้อตกลง

ApiControllers/eva_create_evaluation_detail_firstdocControllers.cs

@@ -69,10 +69,20 @@ namespace TodoAPI2.Controllers
         {
             try
             {
-				if (!MyHelper.checkAuth(Configuration, HttpContext)) return Unauthorized();
-                var result = _repository.GetWithSelection(id);
+                if (!MyHelper.checkAuth(Configuration, HttpContext)) return Unauthorized();
 
-                return Ok(result);
+                if (!string.IsNullOrEmpty(HttpContext.Request.Cookies["user_id"]))
+                {
+                    var loginid = Convert.ToInt32(HttpContext.Request.Cookies["user_id"]);
+                    var e = emp.GetEmployeeForLogin(Convert.ToInt32(loginid));
+                    var result = _repository.GetWithSelection(id, e.id);
+
+                    return Ok(result);
+                }
+                else
+                {
+                    return Unauthorized();
+                }
             }
             catch (Exception ex)
             {