![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 96%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
.NET
Microsoft Technologies based on the .NET software framework.
4,103 questions
It's really not necessary to be there and if you don't have any authorization, feel free to remove it; But pay attention that you have not chosen any Authentication, but it doesn't necessarily mean you cannot have any Authorization, however in most cases you will not have authorization as well.
Here is a very quick example, showing a policy-based authorization rule, which doesn't work if you do not have app.AddAuthorization() . In the following code, I've added a /sunday endpoint to the app, which users are only authorized to see on Sundays.
namespace WebApplication1
{
public class Program
{
public static void Main(string[] args)
{
var builder = WebApplication.CreateBuilder(args);
// Add services to the container.
builder.Services.AddControllersWithViews();
/**********************************************/
builder.Services.AddAuthorization(options =>
{
options.AddPolicy("SundayOnly", policy =>
policy.RequireAssertion(context => DateTime.Now.DayOfWeek == DayOfWeek.Sunday));
});
/**********************************************/
var app = builder.Build();
// Configure the HTTP request pipeline.
if (!app.Environment.IsDevelopment())
{
app.UseExceptionHandler("/Home/Error");
}
app.UseStaticFiles();
app.UseRouting();
app.UseAuthorization();
/**********************************************/
app.MapGet("/sunday", () => "Happy Sunday!").RequireAuthorization("SundayOnly");
/**********************************************/
app.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
app.Run();
}
}
}