开发者

ASP.Net converts 401 to 302 error codes

问答 作者:

I have a custom handler and in some cases, I want to indicate to the user agent that they are not authorized (Http Error Co开发者_StackOverflowde 401)

        if (!IsAuthorized(context))
        {
            context.Response.StatusCode = 401;
            context.Response.End();
            return;
        }

When I access my handler, I am actually getting a 302 and a redirect to the forms authentication page. Is there a way to stop this from happening?

Your scenario sounds like an "Access denied" instead of "unauthorized". Could you use 403 which is the HTTP status code for "Access denied"?

http://en.wikipedia.org/wiki/List_of_HTTP_status_codes

Sounds like you have authentication turned on for the page. If this is the case, then your app is calling Authentication before the hand off to your custom handler. That's why you see the login page.

The isAuthorized in your handler is populated before your handler receives the call. You'll want to use a module and hook into the Authentication Life Cycle Event. See the Asp.Net Life Cycle

继续阅读:asp.net

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9