Added 'CanEdit' sample

Author: csharpfritz

sessions/Season-02/CollectionWebsite/1209-Auth/src/Program.cs

@@ -38,7 +38,12 @@
 // 			options.AccessDeniedPath = "/Identity/Account/AccessDenied";
 // 			options.ReturnUrlParameter = CookieAuthenticationDefaults.ReturnUrlParameter;
 // 		});
-// builder.Services.AddAuthorization();
+builder.Services.AddAuthorization(options => {
+  options.AddPolicy("CanEdit", policy =>
+  {
+    policy.RequireAuthenticatedUser();
+  });
+});
 
 
 builder.Services.AddEndpointsApiExplorer();

sessions/Season-02/CollectionWebsite/1209-Auth/src/Views/Shared/_ItemCard.cshtml

@@ -11,7 +11,7 @@
 					 asp-action="Details" asp-route-id="@Model.Id">
 					@Model.Name
 				</a>
-				@if (User.Identity.IsAuthenticated) {
+				@if ((await AuthService.AuthorizeAsync(User, "CanEdit")).Succeeded) {
 				<a asp-controller="CollectionItems"
 					 asp-action="Edit" asp-route-id="@Model.Id">
 					<span class="oi oi-pencil" title="pencil" aria-hidden="true"></span>