开发者

ASP.NET MVC: How to show a specific view as result of failed authorization in IAuthorizationFilter

问答 作者:

I have IAuthorizationFilter filter that checks for specific roles. In case user doesn't have specified roles, I'd like to show a specific view that says something along the lines of "You don't have privileges to view this page".

I'd also like to show this view on specific url, so redirect is not an option.

Here is what I want:

1) User goes to /Admin/Payments 2) /Admin/Payments requires Admin rights 3) User is not an admin. 4) User is show page 开发者_JAVA技巧that says that he cannot access this page, yet url is /Admin/Payments

Thanks.

public class MyAuthorizeAttribute : AuthorizeAttribute
{
    protected override bool AuthorizeCore(System.Web.HttpContextBase httpContext)
    {
        // TODO: do your authorization or if you want to keep the default
        // simlpy invoke the base method
    }

    protected override void HandleUnauthorizedRequest(AuthorizationContext filterContext)
    {
        filterContext.Result = new ViewResult
        {
            ViewName = "~/Views/Shared/Unauthorized.cshtml"
        };
    }
}

and then:

[MyAuthorize(Roles = "Admin")]
public ActionResult Payments()
{
    ...
}

继续阅读:action-filterasp.net-mvc

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9