AuthorizationOptions.DefaultPolicy Property
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Gets or sets the default authorization policy. Defaults to requiring authenticated users.
public:
property Microsoft::AspNetCore::Authorization::AuthorizationPolicy ^ DefaultPolicy { Microsoft::AspNetCore::Authorization::AuthorizationPolicy ^ get(); void set(Microsoft::AspNetCore::Authorization::AuthorizationPolicy ^ value); };public Microsoft.AspNetCore.Authorization.AuthorizationPolicy DefaultPolicy { get; set; }member this.DefaultPolicy : Microsoft.AspNetCore.Authorization.AuthorizationPolicy with get, setPublic Property DefaultPolicy As AuthorizationPolicyProperty Value
Remarks
- The `DefaultPolicy` applies whenever authorization is required, but no specific policy is set. - If an `[Authorize]` attribute is present without a policy name, the `DefaultPolicy` is used instead of the `FallbackPolicy`. - This behavior ensures that endpoints explicitly requesting authorization (via `[Authorize]` or `RequireAuthorization()`) default to a secure policy. - When non-default behavior is needed, developers should define named policies.