Section 10 - Policy based authorization with Claims

nilekshdhimer91 · Sep 7, 2020 · 84d9ebd · 84d9ebd
1 parent 941ae54
commit 84d9ebd
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 0 deletions.
diff --git a/IdentityManager/Controllers/AccessCheckerController.cs b/IdentityManager/Controllers/AccessCheckerController.cs
@@ -52,6 +52,7 @@ public IActionResult AdminAccess()
             return View();
         }
 
+        [Authorize(Policy = "Admin_CreateAccess")]
         //Accessible by Admin users with a claim of create to be True
         public IActionResult Admin_CreateAccess()
         {

diff --git a/IdentityManager/Startup.cs b/IdentityManager/Startup.cs
@@ -53,6 +53,7 @@ public void ConfigureServices(IServiceCollection services)
             {
                 options.AddPolicy("Admin", policy => policy.RequireRole("Admin"));
                 options.AddPolicy("UserAndAdmin", policy => policy.RequireRole("Admin").RequireRole("User"));
+                options.AddPolicy("Admin_CreateAccess", policy => policy.RequireRole("Admin").RequireClaim("create", "True"));
             });
 
             services.AddControllersWithViews();