Checking login user AuthorizePolicy in Razor page on Asp.Net Core

asp.net-mvc razor asp.net-core-mvc asp.net-identity-3
Thomas Andreè Wang picture Thomas Andreè Wang · May 29, 2016 · Viewed 10.7k times · Source

I'm looking for a variant of this 

@if (SignInManager.IsSignedIn(User) && User.IsInRole(Roles.Administrator))
{
    <div id="editArticle">

but instead of checking after the role I'm after a check into the policy much like you would in a controller by doing this.

[Authorize(Policy = Policies.RequireAdmin)]

Answer

James P picture James P · May 29, 2016

This seems similar to question asked here

I found this link which may be helpful: https://docs.asp.net/en/latest/security/authorization/views.html

Examples from that page:

@if (await AuthorizationService.AuthorizeAsync(User, "PolicyName"))
{
    <p>This paragraph is displayed because you fulfilled PolicyName.</p>
}

In some cases the resource will be your view model, and you can call AuthorizeAsync in exactly the same way as you would check during resource based authorization;

@if (await AuthorizationService.AuthorizeAsync(User, Model, Operations.Edit))
{
    <p><a class="btn btn-default" role="button"
    href="@Url.Action("Edit", "Document", new {id= Model.Id})">Edit</a></p>
}

Related questions

DropDownList in MVC 4 with Razor

I'm trying to create a DropDownList on a razor view. Would someone help me with this? Normal HTML5 code: <select id="dropdowntipo"> <option value="Exemplo1">Exemplo1</option> <option value="Exemplo2">Exemplo2</…

Read More
ASP.NET MVC get textbox input value

I have a textbox input and some radio buttons. For example my textbox input HTML looks like that: <input type="text" name="IP" id="IP" /> Once user clicks a button on a web page I want to pass …

Read More
HTML.ActionLink vs Url.Action in ASP.NET Razor

Is there any difference between HTML.ActionLink vs Url.Action or they are just two ways of doing the same thing? When should I prefer one over the other?

Read More