vanillajonathan/RouteAuthorization.cs

## RouteAuthorization.cs
using System;
using System.Linq;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Mvc.Filters;

namespace WebApplication
{
    /// <summary>
    /// Specifies that the class or method that this attribute is applied to requires
    /// a route template with a route parameter name which value matches the claim
    /// associated with the authenticated user.
    /// </summary>
    /// <seealso cref="RouteAttribute"/>
    [AttributeUsage(AttributeTargets.Class | AttributeTargets.Method)]
    public class RouteAuthorization : Attribute, IAuthorizationFilter
    {
        private readonly string _claimType;
        private readonly string _routeParameter;

        /// <summary>
        /// Initializes a new instance of the <see cref="RouteAuthorization"/> class
        /// with the specified claim type and router parameter name.
        /// </summary>
        /// <param name="claimType">The claim type.</param>
        /// <param name="routeParameter">The route parameter name.</param>
        public RouteAuthorization(string claimType, string routeParameter)
        {
            _claimType = claimType;
            _routeParameter = routeParameter;
        }

        public void OnAuthorization(AuthorizationFilterContext context)
        {
            var routeParameter = context.RouteData.Values.SingleOrDefault(x => x.Key == _routeParameter);
            var claim = context.HttpContext.User.FindFirst(_claimType);
            var claimValue = (string)routeParameter.Value;

            if (claim != null && claimValue != claim.Value)
            {
                context.Result = new UnauthorizedResult();
            }
        }
    }
}
	using System;
	using System.Linq;
	using Microsoft.AspNetCore.Mvc;
	using Microsoft.AspNetCore.Mvc.Filters;

	namespace WebApplication
	{
	/// <summary>
	/// Specifies that the class or method that this attribute is applied to requires
	/// a route template with a route parameter name which value matches the claim
	/// associated with the authenticated user.
	/// </summary>
	/// <seealso cref="RouteAttribute"/>
	[AttributeUsage(AttributeTargets.Class \| AttributeTargets.Method)]
	public class RouteAuthorization : Attribute, IAuthorizationFilter
	{
	private readonly string _claimType;
	private readonly string _routeParameter;

	/// <summary>
	/// Initializes a new instance of the <see cref="RouteAuthorization"/> class
	/// with the specified claim type and router parameter name.
	/// </summary>
	/// <param name="claimType">The claim type.</param>
	/// <param name="routeParameter">The route parameter name.</param>
	public RouteAuthorization(string claimType, string routeParameter)
	{
	_claimType = claimType;
	_routeParameter = routeParameter;
	}

	public void OnAuthorization(AuthorizationFilterContext context)
	{
	var routeParameter = context.RouteData.Values.SingleOrDefault(x => x.Key == _routeParameter);
	var claim = context.HttpContext.User.FindFirst(_claimType);
	var claimValue = (string)routeParameter.Value;

	if (claim != null && claimValue != claim.Value)
	{
	context.Result = new UnauthorizedResult();
	}
	}
	}
	}