With the introduction of AuthorizationManager, there are a number of next steps that seem valuable.
- [x] Consider AuthorizationManager for Method Security - #9289
- [x] #11076
- [x] Consider ReactiveAuthorizationManager for Reactive Method Security - #9401
- [x] Add AuthorizationDecision to AuthorizationFailureEvent - #9286
- [x] Add Reasons to AuthorizationDecisions - #9287
- [x] DelegatingAuthorizationManager Should Fire Events - #9288
- [x] #11305
- [x] #11306
- [x] #11304
- [x] #11329
- [x] #11328
- [x] #11327
- [x] #11326
- [x] #11302
- [x] #11337
- [x] #11360
Not yet included in this list are potential deprecations, though I think this could depend on where #9289 lands.