Update the claim destinations documentation to use the new SetDestinations() overload introduced in OpenIddict 4.0

configuration/claim-destinations.md

@@ -17,7 +17,7 @@ For these reasons, **OpenIddict doesn't automatically copy the claims attached t
 to an access or identity token, a flag known as "claim destination" must be added to each `Claim` instance you want to expose.
 
 > [!NOTE]
-> To attach one or multiple destinations to a claim, use the `claim.SetDestinations()` extension defined in `OpenIddict.Abstractions`.
+> To attach one or multiple destinations to a claim, use the `principal.SetDestinations()` extension defined in `OpenIddict.Abstractions`.
 > In the typical case, granted scopes can be used to determine what claims are allowed to be copied to access and identity tokens, as in this example:
 
 ```csharp
@@ -28,14 +28,11 @@ var principal = await _signInManager.CreateUserPrincipalAsync(user);
 // For that, simply restrict the list of scopes before calling SetScopes().
 principal.SetScopes(request.GetScopes());
 principal.SetResources(await _scopeManager.ListResourcesAsync(principal.GetScopes()).ToListAsync());
-
-foreach (var claim in principal.Claims)
-{
-    claim.SetDestinations(claim.Type switch
+principal.SetDestinations(static claim => claim.Type switch
 {
     // If the "profile" scope was granted, allow the "name" claim to be
     // added to the access and identity tokens derived from the principal.
-        Claims.Name when principal.HasScope(Scopes.Profile) => new[]
+    Claims.Name when claim.Subject.HasScope(Scopes.Profile) => new[]
     {
         OpenIddictConstants.Destinations.AccessToken,
         OpenIddictConstants.Destinations.IdentityToken
@@ -52,7 +49,6 @@ foreach (var claim in principal.Claims)
         OpenIddictConstants.Destinations.AccessToken
     }
 });
-}
 
 return SignIn(principal, OpenIddictServerAspNetCoreDefaults.AuthenticationScheme);
 ```