How to handle an authorization policy in both queries and commands in CQRS?
I’m implementing a restaurant management micro-service using CQRS pattern.
The read and write databases are separated and eventually become consistent by async events using an event bus.