jlucaspains/AuthSimpleResourceAuthorize.cs

## AuthSimpleResourceAuthorize.cs
public void DoSomething()
{
  // explicit access checking
  // HasRead is an extension method for UserPrincipal class
  if(User.HasRead("App.ResourceName")
  {
    // do something if user has read access to App.Resource1
  }
}

// maybe some action decorator for asp.net web api or mvc
// by extending the authorize attribute, this method is never
// called if user doesn't have proper access
[ResourceAuthorize("App.ResourceName", Action.Read)]
public IEnumerable&lt;Item> GetAllItems()
{
  return new List&lt;Item>();
}

// requires write permission
[ResourceAuthorize("App.ResourceName", Action.Write)]
public void SaveItem(Item item)
{
   _uow.Save(item);
}
	public void DoSomething()
	{
	// explicit access checking
	// HasRead is an extension method for UserPrincipal class
	if(User.HasRead("App.ResourceName")
	{
	// do something if user has read access to App.Resource1
	}
	}

	// maybe some action decorator for asp.net web api or mvc
	// by extending the authorize attribute, this method is never
	// called if user doesn't have proper access
	[ResourceAuthorize("App.ResourceName", Action.Read)]
	public IEnumerable<Item> GetAllItems()
	{
	return new List<Item>();
	}

	// requires write permission
	[ResourceAuthorize("App.ResourceName", Action.Write)]
	public void SaveItem(Item item)
	{
	_uow.Save(item);
	}