Added UAuthAuthorize Attribute

samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore/Components/Pages/AuthorizedTestPage.razor

@@ -1,5 +1,6 @@
 @page "/authorized-test"
-@attribute [Authorize]
+@attribute [UAuthAuthorize]
+@inherits UAuthFlowPageBase
 
 <MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
     <MudPaper Class="pa-8" Style="max-width: 520px; width: 100%;" Elevation="0" Outlined="true">

samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore/Components/Pages/Home.razor

@@ -1,5 +1,5 @@
 @page "/home"
-@attribute [Authorize]
+@attribute [UAuthAuthorize]
 @inherits UAuthFlowPageBase
 
 @inject IUAuthClient UAuthClient

samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/Components/Pages/AuthorizedTestPage.razor

@@ -1,5 +1,6 @@
 @page "/authorized-test"
-@attribute [Authorize]
+@attribute [UAuthAuthorize]
+@inherits UAuthFlowPageBase
 
 <MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
     <MudPaper Class="pa-8" Style="max-width: 520px; width: 100%;" Elevation="0" Outlined="true">
@@ -13,7 +14,7 @@
             </MudText>
 
             <MudStack Row="true" Spacing="2" Class="mt-2">
-                <MudButton Href="/home" Color="Color.Primary" Variant="Variant.Filled">Go Profile</MudButton>
+                <MudButton Href="/home" Color="Color.Primary" Variant="Variant.Filled">Go Home Page</MudButton>
             </MudStack>
 
             <MudDivider Class="my-2" />

samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/Components/Pages/Home.razor

@@ -1,5 +1,5 @@
 @page "/home"
-@attribute [Authorize]
+@attribute [UAuthAuthorize]
 @inherits UAuthFlowPageBase
 
 @inject IUAuthClient UAuthClient

samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/Pages/AuthorizedTestPage.razor

@@ -1,5 +1,6 @@
 @page "/authorized-test"
-@attribute [Authorize]
+@attribute [UAuthAuthorize]
+@inherits UAuthFlowPageBase
 
 <MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
     <MudPaper Class="pa-8" Style="max-width: 520px; width: 100%;" Elevation="0" Outlined="true">

samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/Pages/Home.razor

@@ -1,5 +1,5 @@
 @page "/home"
-@attribute [Authorize]
+@attribute [UAuthAuthorize]
 @inherits UAuthFlowPageBase
 
 @inject IUAuthClient UAuthClient

samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AuthorizedTestPage.razor

@@ -1,5 +1,6 @@
 @page "/authorized-test"
-@attribute [Authorize]
+@attribute [UAuthAuthorize]
+@inherits UAuthFlowPageBase
 
 <MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
     <MudPaper Class="pa-8" Style="max-width: 520px; width: 100%;" Elevation="0" Outlined="true">
@@ -13,7 +14,7 @@
             </MudText>
 
             <MudStack Row="true" Spacing="2" Class="mt-2">
-                <MudButton Href="/home" Color="Color.Primary" Variant="Variant.Filled">Go Profile</MudButton>
+                <MudButton Href="/home" Color="Color.Primary" Variant="Variant.Filled">Go Home Page</MudButton>
             </MudStack>
 
             <MudDivider Class="my-2" />

samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor

@@ -1,6 +1,5 @@
 @page "/home"
-@* To make Authorize attribute to work, add ResourceApi in Program.cs, but it affects performance significantly *@
-@* @attribute [Authorize] *@
+@attribute [UAuthAuthorize]
 @inherits UAuthFlowPageBase
 
 @inject IUAuthClient UAuthClient

src/client/CodeBeam.UltimateAuth.Client.Blazor/Attributes/UAuthAuthorizeAttribute.cs

@@ -0,0 +1,8 @@
+namespace CodeBeam.UltimateAuth.Client.Blazor;
+
+[AttributeUsage(AttributeTargets.Class)]
+public sealed class UAuthAuthorizeAttribute : Attribute
+{
+    public string? Roles { get; set; }
+    public string? Permissions { get; set; }
+}

src/client/CodeBeam.UltimateAuth.Client.Blazor/Components/Base/UAuthFlowPageBase.cs

@@ -1,5 +1,4 @@
 using CodeBeam.UltimateAuth.Core.Contracts;
-using Microsoft.AspNetCore.Components;
 using Microsoft.AspNetCore.WebUtilities;
 using System.Text;
 using System.Text.Json;
@@ -8,8 +7,6 @@ namespace CodeBeam.UltimateAuth.Client.Blazor;
 
 public abstract class UAuthFlowPageBase : UAuthReactiveComponentBase
 {
-    [Inject] protected NavigationManager Nav { get; set; } = default!;
-
     protected AuthFlowPayload? UAuthPayload { get; private set; }
     protected string? ReturnUrl { get; private set; }
     protected bool ShouldFocus { get; private set; }

src/client/CodeBeam.UltimateAuth.Client.Blazor/Components/Base/UAuthReactiveComponentBase.cs

@@ -5,10 +5,13 @@ namespace CodeBeam.UltimateAuth.Client.Blazor;
 public abstract class UAuthReactiveComponentBase : ComponentBase, IDisposable
 {
     private UAuthState? _previousState;
+    private bool _rendered;
 
     [CascadingParameter]
     protected UAuthState AuthState { get; set; } = default!;
 
+    [Inject] protected NavigationManager Nav { get; set; } = default!;
+
     /// <summary>
     /// Automatically re-render when UAuthState changes.
     /// Can be overridden to disable.
@@ -31,12 +34,24 @@ protected override void OnParametersSet()
             AuthState.Changed += OnAuthStateChanged;
             _previousState = AuthState;
         }
+
+        EvaluateAuthorization();
+    }
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        await base.OnAfterRenderAsync(firstRender);
+
+        if (firstRender)
+            _rendered = true;
     }
 
     private void OnAuthStateChanged(UAuthStateChangeReason reason)
     {
         HandleAuthStateChanged(reason);
 
+        EvaluateAuthorization();
+
         if (AutoRefreshOnAuthStateChanged)
             _ = InvokeAsync(StateHasChanged);
     }
@@ -48,6 +63,54 @@ protected virtual void HandleAuthStateChanged(UAuthStateChangeReason reason)
     {
     }
 
+    private void EvaluateAuthorization()
+    {
+        var attr = GetType()
+            .GetCustomAttributes(typeof(UAuthAuthorizeAttribute), true)
+            .FirstOrDefault() as UAuthAuthorizeAttribute;
+
+        if (attr is null)
+            return;
+
+        if (_rendered && !AuthState.IsAuthenticated)
+        {
+            OnUnauthorized();
+            return;
+        }
+
+        if (_rendered && !string.IsNullOrEmpty(attr.Roles))
+        {
+            var roles = attr.Roles.Split(',');
+
+            if (!roles.Any(r => AuthState.IsInRole(r.Trim())))
+            {
+                OnForbidden();
+                return;
+            }
+        }
+
+        if (_rendered && !string.IsNullOrEmpty(attr.Permissions))
+        {
+            var permissions = attr.Permissions.Split(',');
+
+            if (!permissions.Any(p => AuthState.HasPermission(p.Trim())))
+            {
+                OnForbidden();
+                return;
+            }
+        }
+    }
+
+    protected virtual void OnUnauthorized()
+    {
+        Nav.NavigateTo("/");
+    }
+
+    protected virtual void OnForbidden()
+    {
+        Nav.NavigateTo("/forbidden");
+    }
+
     public virtual void Dispose()
     {
         if (_previousState is not null)