Authorization Policies

kim · November 18, 2020, 8:14pm

Hello Radzen Team!

Regarding authorization policies, is there any way to implement them in a Radzen app?

Implementation would follow this example structure:

public class TestRequirement : IAuthorizationRequirement
{
    public int MinimumAge { get; }
    public TestRequirement(int minimumAge)
    {
        MinimumAge = minimumAge;
    }
}

services.AddAuthorization(options =>
{
    options.AddPolicy("TestPolicy", policy =>
        policy.Requirements.Add(new TestRequirement(18)));
});

@attribute [Authorize(Policy = "TestPolicy")]

Besides forcing the @attribute [Authorize] into pages, it could recognize existing policies and allow them inside the code at least. I definitely don't want to add the pages to the ignore list.

Another idea is to have a markup for ignored code, but I'm not sure if this is even feasible.

enchev · November 19, 2020, 10:06am

Hey @kim,

Not possible at the moment however we will add a TextBox in the page properties where you will be able to specify your custom policy:

kim · November 19, 2020, 11:00am

That's great!

I think this will solve my problem.

Eric_vU · September 3, 2021, 1:50pm

Do you have an example? I want to do the same but am not sure how to implement it.

enchev · September 3, 2021, 1:53pm