ansaurus

Question

how to provide access to controler by special code in link

Answer 1

+1 A:

You could create a custom attribute filter by extending the AuthorizeAttribute.

Something like:

public class CustomAuthorizeAttribute : AuthorizeAttribute {

  public string Code { get; set; }

  protected override bool AuthorizeCore(HttpContextBase httpContext) {
    if (base.AuthorizeCore(httpContext)) {
      return true;
    }

    string code = Code ?? GetCode() //parse you code as a parameter or get it from another method
    if (httpContext.Request["code"] == code) {
      return true;
    }

    return false;
  }

}


//I wouldn't recommend parsing the code like this, I would get it in your action filter
[CustomAuthorizeAttribute(Code="0932840329809u0932840")]
public ActionResult Index() {
  return View();
}

Have a look at http://schotime.net/blog/index.php/2009/02/17/custom-authorization-with-aspnet-mvc/

David G 2010-02-17 11:01:53

is there any way to fetch route data in this CustomAuthorizeAttribute class? I can't find route data in httpContext ...

Jack 2010-03-01 21:02:21

The route data is available through the httpContext.Request object so to get the query string value of www.mysite.com/Company/123?code=0932840329809u0932840 you can use httpContext.Request.QueryString["code"]

David G 2010-03-03 12:10:42

ansaurus

tags:

views:

answers:

how to provide access to controler by special code in link

related questions