public async Task OnAuthorizationAsync(AuthorizationFilterContext context) { AdminAttribute.Apply(context.HttpContext); var authorized = await _authorizationService.AuthorizeAsync(context.HttpContext.User, Permissions.AccessAdminPanel); if (!authorized) { context.Result = new UnauthorizedResult(); } }
public void OnActionExecuting(ActionExecutingContext context) { var controller = context.Controller as Controller; if (controller != null) { if (controller.GetType().Name.StartsWith("Admin")) { AdminAttribute.Apply(context.HttpContext); } } }