kwestground/PermissionRecord.cs

## PermissionRecord.cs
namespace Nop.Web.Framework.Controllers
{
    using System;
    using System.Web.Mvc;
    using Core.Domain.Security;
    using Core.Infrastructure;
    using Services.Security;

    [AttributeUsage(AttributeTargets.Method | AttributeTargets.Class, AllowMultiple=true)]
    public class PermissionRecordValidation : FilterAttribute, IAuthorizationFilter
    {
        private readonly PermissionRecord _permissionRecord;

        public PermissionRecordValidation(PermissionRecord permissionRecord)
        {
            this._permissionRecord = permissionRecord;
        }

        public virtual void OnAuthorization(AuthorizationContext filterContext)
        {
            if (filterContext == null)
                throw new ArgumentNullException(nameof(filterContext));

            var permissionService = EngineContext.Current.Resolve<IPermissionService>();

            if (!permissionService.Authorize(_permissionRecord))
                filterContext.Result = new HttpUnauthorizedResult();
        }
    }
}
	namespace Nop.Web.Framework.Controllers
	{
	using System;
	using System.Web.Mvc;
	using Core.Domain.Security;
	using Core.Infrastructure;
	using Services.Security;

	[AttributeUsage(AttributeTargets.Method \| AttributeTargets.Class, AllowMultiple=true)]
	public class PermissionRecordValidation : FilterAttribute, IAuthorizationFilter
	{
	private readonly PermissionRecord _permissionRecord;

	public PermissionRecordValidation(PermissionRecord permissionRecord)
	{
	this._permissionRecord = permissionRecord;
	}

	public virtual void OnAuthorization(AuthorizationContext filterContext)
	{
	if (filterContext == null)
	throw new ArgumentNullException(nameof(filterContext));

	var permissionService = EngineContext.Current.Resolve<IPermissionService>();

	if (!permissionService.Authorize(_permissionRecord))
	filterContext.Result = new HttpUnauthorizedResult();
	}
	}
	}