public async Task <AuthorizationResult> Evaluate(ClaimsPrincipal principal, object userContext, IDictionary <string, object> arguments, IEnumerable <string> requiredPolicies)
{
var context = new AuthorizationContext
{
User = principal ?? new ClaimsPrincipal(new ClaimsIdentity()),
UserContext = userContext,
InputVariables = arguments
};
foreach (var requiredPolicy in requiredPolicies?.ToList() ?? new List <string>())
{
var authorizationResult = await _authorizationService.AuthorizeAsync(context.User, null, new PermissionAuthorizationRequirement(requiredPolicy));
if (!authorizationResult.Succeeded)
{
context.ReportError($"User doesn't have the required permission '{requiredPolicy}'.");
}
}
return(!context.HasErrors ? AuthorizationResult.Success() : AuthorizationResult.Fail(context.Errors));
}