public async Task OnAuthorizationAsync(AuthorizationFilterContext context)
{
AdminAttribute.Apply(context.HttpContext);
var authorized = await _authorizationService.AuthorizeAsync(context.HttpContext.User, Permissions.AccessAdminPanel);
if (!authorized)
{
context.Result = new UnauthorizedResult();
}
}
public void OnActionExecuting(ActionExecutingContext context)
{
var controller = context.Controller as Controller;
if (controller != null)
{
if (controller.GetType().Name.StartsWith("Admin"))
{
AdminAttribute.Apply(context.HttpContext);
}
}
}
