I am building a project with asp.net core api.in my project user can create group and in the that group can publish posts and can join groups created by others. If He is the creators, he can give permission to users in his group to publish posts. How can authorize the methods of creating posts and give permissions to other users in the group. I make a table consist of user id and group id and user role in the group and inside every method I check if the user is authorized to use this method and use jwt bearer to know user id. But I don’t think this is the right way to authorize my website .is there another way to make this without manual check