In the InNamespace and InstanceOf methods, we immediately call the Action that is supplied. We should only call the action when the condition and "CanAuthorize" is applied.
The means we don't do an expensive db call (for example) until we know that the rule applies to this securable.
smithmx
commented
5 years ago
See for example:
https://github.com/dolittle/Runtime/blob/d7aa7f7127eabdbf424424a92f1e13828899c5fe/Source/Commands.Security/CommandSecurityExtensions.cs
In the InNamespace and InstanceOf methods, we immediately call the Action that is supplied. We should only call the action when the condition and "CanAuthorize" is applied.
The means we don't do an expensive db call (for example) until we know that the rule applies to this securable.