ansaurus

Question

How to redirect by throwing an exceptions from an Asp.NET controller?

Answer 1

+2 A:

While I think that you should change approach to solution about authorization, you can stay with it and use this code:

public partial class BaseUserAwareController : Controller
{
    protected override void OnAuthorization(AuthorizationContext filterContext)
    {
        if (GetCurrentUser() == null)
        {
            filterContext.Result = new HttpUnauthorizedResult();
        }
    }
}

If your project is not too big, think about changing it to use [Authorize]. If you used it, it would be only:

[Authorize]
public partial class UserAwareController : Controller
{

}

You may think that this is not that big difference, but [Authorize] handles also some caching issues (returning cached response when you are not authorized anymore).

Install MVC 2 and create new MVC 2 web application. It contains authorization logic that you can propably use in your application.

LukLed 2010-04-27 16:59:53

Can you point me towards a link that explains Authorization and how to properly use the Authorize keyword? I don't understand how I bind it to my authentication scheme (mine uses open ID).

ripper234 2010-04-27 17:13:49

@ripper234: Here is an article about FormsAuthentication and what you have to do to use [Authorize] attribute: http://blog.codevelop.dk/post/2007/11/24/ASPNET-20-Forms-authentication-Keeping-it-customized-yet-simple.aspx You can propably modify it to use OpenId.

LukLed 2010-04-27 17:33:05

I tried using Authorize, it looks rather promising except then I came across this issue: http://stackoverflow.com/questions/2724271/using-a-colon-in-return-url-with-forms-authentication-the-return-url-specif

ripper234 2010-04-27 19:45:09

Answer 2

+1 A:

Why not just use the Redirect or RedirectToAction methods to redirect to your login page:

public ActionResult GetCurrentUser()
{
  if (user is not logged in)
  {
      Redirect("/LoginPage");
   }
}

EDIT: Or do the check in the base controller OnActionExecuting:

public class BaseController : Controller
{
    protected override void OnActionExecuting(ActionExecutingContext filterContext)
    {
        if (GetCurrentUser() == null)
        {
            (filterContext.Controller as BaseController).Redirect("/Login");
        }

        base.OnActionExecuting(filterContext);
    }

}

http://forums.asp.net/t/1239842.aspx is also a good reference to this topic as well.

amurra 2010-04-27 17:05:13

And what if action doesn't need to call GetCurrentUser?

LukLed 2010-04-27 17:06:33

He didn't ask for that case, just the case if GetCurrentUser was called

amurra 2010-04-27 17:12:07

Does Redirect throw an exception? I don't want to repeat the code that checks "if (GetCurrentUser() == null) Redirect" in every method. I prefer to just use "GetCurrentUser()", and if there is no 'current user' then I want a redirect action (via an exception).

ripper234 2010-04-27 17:14:48

@ripper234: You don't have to repeat it in every controller. You just place it in base controller.

LukLed 2010-04-27 17:18:33

Redirect will take you to the URI you specify which will contain the action to return the login page. You could put this check in the base controller in the OnActionExecution method and redirect them there

amurra 2010-04-27 17:33:58

All redirects in ASP.NET are done through exceptions afaik .. so this will break execution and redirect.

Tigraine 2010-04-27 17:36:30

@Tigraine - in Asp.NET MVC you can also return a Redirect result.

ripper234 2010-04-27 18:48:09

Answer 3

+1 A:

In your base controller, override OnActionExecuting. This gives you access to the ActionExecutingContext, which contains the HttpContext and thus the Response.

You can then redirect the user based on whatever logic you want like so:

<ActionContext>.HttpContext.Response.Redirect(<Your Url>)

I forget the name of the context variable offhand, but it's in the method signature.

Tejs 2010-04-27 17:23:05

ansaurus

tags:

views:

answers:

How to redirect by throwing an exceptions from an Asp.NET controller?

related questions