Skip to content
All gists
Back to GitHub
Sign in
Sign up
Sign in
Sign up
{{ message }}
Instantly share code, notes, and snippets.
Ibro
/
AuthorizeResourceAttribute.cs
Created
Apr 26, 2018
Star
0
Fork
0
Star
Code
Revisions
1
Embed
What would you like to do?
Embed
Embed this gist in your website.
Share
Copy sharable link for this gist.
Clone via HTTPS
Clone with Git or checkout with SVN using the repository’s web address.
Learn more about clone URLs
Download ZIP
Raw
AuthorizeResourceAttribute.cs
public
class
AuthorizeResourceAttribute
:
TypeFilterAttribute
{
public
AuthorizeResourceAttribute
(
Type
requirementType
)
:
base
(
typeof
(
AuthorizeResourceFilter
))
{
Arguments
=
new
object
[] {
requirementType
};
}
private
class
AuthorizeResourceFilter
:
IAsyncActionFilter
{
private
readonly
IAuthorizationService
_authorizationService
;
private
readonly
Type
_requirementType
;
public
AuthorizeResourceFilter
(
ApplicationDbContext
dbContext
,
IAuthorizationService
authorizationService
,
Type
requirementType
)
{
_authorizationService
=
authorizationService
;
_requirementType
=
requirementType
;
}
public
async
Task
OnActionExecutionAsync
(
ActionExecutingContext
context
,
ActionExecutionDelegate
next
)
{
var
resource
=
context
.
ActionArguments
.
First
().
Value
;
var
requirement
=
Activator
.
CreateInstance
(
_requirementType
)
as
IAuthorizationRequirement
;
var
authorizationResult
=
await
_authorizationService
.
AuthorizeAsync
(
context
.
HttpContext
.
User
,
resource
,
requirement
);
if
(
!
authorizationResult
.
Succeeded
)
{
context
.
Result
=
new
ForbidResult
();
return
;
}
await
next
();
}
}
}
Sign up for free
to join this conversation on GitHub
. Already have an account?
Sign in to comment
You can’t perform that action at this time.
You signed in with another tab or window.
Reload
to refresh your session.
You signed out in another tab or window.
Reload
to refresh your session.