services.AddAuthorization(o => { o.AddPolicy("FirstStepCompleted", policy => policy.RequireClaim("FirstStepCompleted")); o.AddPolicy("Authorized", policy => policy.RequireClaim("Authorized")); });