Simplify how to check if the user is an admin

[MikeAlhayek]

No description provided.

[github-actions]

This pull request has merge conflicts. Please resolve those before requesting a review.

[sebastienros]

But this would be removed if we have a custom filter for authorization, right?

[MikeAlhayek]

I don't think we would. Because we should still return true if the user is an admin. has_authorization would use the IAutheorizationService to do similar check without evaluating the claims explicitly.

If we need to remove it, we'll have to document it as a breaking change for 3.0 and offer has_authorization as a better way to authorize user

[sebastienros]

Because we should still return true if the user is an admin

In 2.x because it would be a breaking change otherwise. So we can remove it in 3.0.

[MikeAlhayek]

So are you saying to keep this and at somepoint add has_authorization. then in 3.0, we can remove this check from has_claim, correct?

[MikeAlhayek]

@sebastienros actually we already have has_permission filter that one can already use. So I don't think there is a need to add has_authorization

[gvkries]

I also think this should be removed e.g. in 3.0, but lets keep it for backward compatibility until then.

[MikeAlhayek]

I added a note so we can remove it in 3.0

[gvkries]

I think the type name should be more clear and maybe not related to our permissions only. In the future, we may want to use this claim for other checks, beside checking for the existing permissions.
Something like IsSuperUser = true or similar.

[MikeAlhayek]

I changed it to Claim SiteOwner = new("SiteOwner", "true"); and moved it to a new StandardClaims class instead

[gvkries]

@MikeAlhayek This is awesome 👍