I am seeking your advice on implementing user authorization check in this LASG architecture. For an example if I implement ASP.NET Identity with claim authorization, then where should I implement the ClaimsPrincipalPermission?
[ClaimsPrincipalPermission(SecurityAction.Demand,Operation = "Apply",Resource = "Leave")]
public Leave Apply(Leave leave)
Currently, I am planning to implement it at LeaveSample.UI.Process LeaveController, but I think the best place is service layer. Please kindly advice.