Claims authorization for specific resources

Question

I am writing an example file storage system (example just for stackoverflow).

My current domain models look as such:

public class User
{
    public i         


        

Answer 1

Pablo is right - claims describe identity. You use that identity to come to an authorization decision though. There is a separate abstraction for that called ClaimsAuthorizationManager.

Have a look here: http://leastprivilege.com/2012/10/26/using-claims-based-authorization-in-mvc-and-web-api/