Policies1-Startup.cs

// Configure authorization
services.AddAuthorization(options => options.AddPolicy(CookieMonsterSecurity.OnlyGoodMonstersPolicy, policy =>
{
    policy.AuthenticationSchemes.Add(CookieMonsterSecurity.CookieMonsterAuthenticationSchema);

    // Our own requirement logic...
    policy.AddRequirements(new IsGoodMonsterRequirement());
}));