From d7e16368e7ea2c58f49135ade48905e53078eb1e Mon Sep 17 00:00:00 2001
From: Biraj Mainali <71131016+BirajMainali@users.noreply.github.com>
Date: Mon, 15 Dec 2025 08:02:16 +0000
Subject: [PATCH] feat: enable customizable authorization checks via
 method-level service invocation

Introduced an extension point to allow consumers to implement their own authorization logic while preserving existing framework-level checks. This change enables method-level authorization to be overridden or extended through DI-friendly services, addressing the limitation caused by non-virtual methods and providing a clean, maintainable customization path.
---
 .../Abp/Authorization/MethodInvocationAuthorizationService.cs   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/framework/src/Volo.Abp.Authorization/Volo/Abp/Authorization/MethodInvocationAuthorizationService.cs b/framework/src/Volo.Abp.Authorization/Volo/Abp/Authorization/MethodInvocationAuthorizationService.cs
index 6316e38f52..6a34b21835 100644
--- a/framework/src/Volo.Abp.Authorization/Volo/Abp/Authorization/MethodInvocationAuthorizationService.cs
+++ b/framework/src/Volo.Abp.Authorization/Volo/Abp/Authorization/MethodInvocationAuthorizationService.cs
@@ -20,7 +20,7 @@ public class MethodInvocationAuthorizationService : IMethodInvocationAuthorizati
         _abpAuthorizationService = abpAuthorizationService;
     }
 
-    public async Task CheckAsync(MethodInvocationAuthorizationContext context)
+    public virtual async Task CheckAsync(MethodInvocationAuthorizationContext context)
     {
         if (AllowAnonymous(context))
         {