"Authorisation behaviours" to include in `Mediatr` pipelines - Githubissues

TheMagnificent11 / lewee

2 stars 1 forks source link

"Authorisation behaviours" to include in `Mediatr` pipelines #87

Open TheMagnificent11 opened 9 months ago

TheMagnificent11 commented 9 months ago

There's two types of authorisation that I think needs to be addressed:

Authorisation to only allow a site administrator (or super administrator) to access the query/command
Authorisation that requires the user to have a "claim" to something to access the query/command
- Tenant membership
- Tenant role
- A combination of tenant membership and tenant role

Possible Solution

Administrator Authorisation

Create IAdministratorRequet interface that can be added to commands and queries and then used for authorisation in an AdministratorBehavior.

Claims Authorisation

TODO

TheMagnificent11 commented 4 months ago

Identity in .Net 8