# Inside base module
sub cgiapp_prerun {
    my ($self, $run_mode) = @_;
    
    unless( $self->authorize() ){
        # Error
        $self->prerun_mode('UNAUTHORIZED');
    } 
} 

sub authorize {
    my $self = shift;
    
    return $self->session->param('logged-in');
}