diff --git a/src/controllers/PermissionController.ts b/src/controllers/PermissionController.ts
index 8016639d..b996774a 100644
--- a/src/controllers/PermissionController.ts
+++ b/src/controllers/PermissionController.ts
@@ -12,6 +12,7 @@ import { Profile } from "../entities/Profile";
 import { AuthSys } from "../entities/AuthSys";
 import { promisify } from "util";
 import { In } from "typeorm";
+import permission from "../interfaces/permission";
 const REDIS_HOST = process.env.REDIS_HOST;
 const REDIS_PORT = process.env.REDIS_PORT;
 
@@ -177,4 +178,25 @@ export class PermissionController extends Controller {
 
     return new HttpSuccess(reply);
   }
+
+  /**
+   * API permission (dotnet api)
+   * @summary permission (dotnet api)
+   * @param {string} method  Method
+   * @param {string} system  authSysId
+   */
+  @Get("dotnet/{method}/{system}")
+  public async dotnet(
+    @Request() req: RequestWithUser, 
+    @Path() method: string,
+    @Path() system: string
+  ) {
+
+    if(!["CREATE", "DELETE", "GET", "LIST", "UPDATE"].includes(method)) {
+      throw new HttpError(HttpStatus.NOT_FOUND, "Method ไม่ถูกต้อง"); 
+    }
+
+    let res = await new permission().Permission(req, system.toLocaleUpperCase(), method);
+    return new HttpSuccess(res);
+  }
 }
diff --git a/src/entities/AuthRoleAttr.ts b/src/entities/AuthRoleAttr.ts
index 78fd9372..429d926c 100644
--- a/src/entities/AuthRoleAttr.ts
+++ b/src/entities/AuthRoleAttr.ts
@@ -45,7 +45,7 @@ export class AuthRoleAttr extends EntityBase {
 
   @Column({
     nullable: true,
-    comment: "สิทธิการเข้าถึง(Privilege)",
+    comment: "สิทธิ์การเข้าถึง(Privilege)",
     length: 255,
     default: null,
   })
diff --git a/src/interfaces/permission.ts b/src/interfaces/permission.ts
index fd5dd737..e2d7afea 100644
--- a/src/interfaces/permission.ts
+++ b/src/interfaces/permission.ts
@@ -19,9 +19,8 @@ import HttpStatus from "./http-status";
 
 class CheckAuth {
   public async Permission(req: RequestWithUser, system: string, action: string) {
-    console.log(req);
-
-    await new CallAPI()
+    // console.log(req);
+    return await new CallAPI()
       .GetData(req, "/org/permission")
       .then((x) => {
         let permission = false;