protected async Task <TValue> HandleAuthorizedRequest(Func <string, Task <TValue> > handler)
 {
     if (!IsAuthorized() || !_sessions.TryGet(Session, out var login))
     {
         Response.StatusCode = 403;
         return(default);