with the ClaimsAuthorizeAttribute
(.net4.5) I can define required resources and actions like this:
[ClaimsAuthorize("View", "Administration")]
I can also add multiple attributes for more granular permissions
[ClaimsAuthorize("View", "Person")]
[ClaimsAuthorize("Edit", "Settings")]
but in the CheckAccess
Method I have two seperated collections, which don't have any relation.
public override bool CheckAccess(AuthorizationContext context)
{
So I know there is "View" and "Edit" and on the other side is "Person" and "Settings"
But I don't know whether it was meant
"View Person" or "View Settings" nor
"Edit Person" or "Edit Settings"
How to deal with that?
Am I using the Resource and Action in a way that it was not meant to be?(.net 4.5)