public async Task OnAuthorizationAsync(AuthorizationFilterContext context) { var User = context.HttpContext.User; string UserRoles = User.FindFirst(ClaimTypes.Role)?.Value; if (UserRoles != null) { var conAction = context.ActionDescriptor as ControllerActionDescriptor; bool HasPermission = false; if (conAction.ActionName.ToLower() == "error") { HasPermission = true; } else { PermissionManager permissionManager = new PermissionManager(); HasPermission = await _appPer.CheckFrontPagePermission(conAction.ControllerName, conAction.ActionName, UserRoles); } if (!HasPermission) { context.Result = new ForbidResult(); } } }