tags:

views:

318

answers:

2
+2  Q: 

MVC and OpenID Redirection Problems

When I get AuthenticationStatus.Authenticated (DotNetOpenId library) response from myopenid provider, i'd like to redirect user from login page to another one using MVC Redirect(myurl). But unfortunately, instead of getting to myurl, user is redirected to empty page:

myurl?token=AWSe9PSLwx0RnymcW0q.... (+ several kilobytes of myopenid-specific query string)

I also tried FormsAuthentication.RedirectFromLoginPage(), but it redirects to original login page again instead of the myurl.

Could anybody suggest proper redirection to myurl?

Thanks

+1  A: 

First of all you should set authorization cookie:

FormsAuth.SetAuthCookie(UserName, RememberMe);

After this you should return RedirectToAction result:

return RedirectToAction(actionName, controllerName);

Or Redirect result:

return Redirect(url);

When you use "return Redirect(url);" it uses Response.Redirect(url, false) method for redirecting so it must work. May be you not returning this action result, please check this. "FormsAuthentication.RedirectFromLoginPage()" will redirect to login page when you didn't set authorization cookie or when your login page is a home (default) page of the application -

The RedirectFromLoginPage method redirects to the URL specified in the query string using the ReturnURL variable name. For example, in the URL http://www.contoso.com/login.aspx?ReturnUrl=caller.aspx, the RedirectFromLoginPage method redirects tothe return URL caller.aspx. If the ReturnURL variable does not exist, the RedirectFromLoginPage method redirects to the URL in the DefaultUrl property.

Via MSDN

zihotki  2009-02-15 10:59:05
A: 

I use the classic ReturnUrl querystring parameter to get the user back to the right page. Unfortunately, the RedirectFromLoginPage does not work well after OpenId Authentication so you must do it manually. Note, this is done as an authentication module rather than deeper in on the controller. It feels cleaner this way.

      FormsAuthentication.SetAuthCookie(openid.Response.ClaimedIdentifier, false);
      //FormsAuthentication.RedirectFromLoginPage(openid.Response.ClaimedIdentifier, false); <-- doesn't work
      //send back to the right page
      string returnUrl = ctx.Request.QueryString["ReturnUrl"];
      if (!string.IsNullOrEmpty(returnUrl))
      {
        returnUrl = HttpUtility.UrlDecode(returnUrl);
        ctx.Response.Redirect(returnUrl);
      }

If you'd like to see the entire implementation of the OpenIdAuthenticationModule, check out the source code on codeplex.

JarrettV  2009-02-21 23:44:18

related questions

Views in separate assemblies in ASP.NET MVC
Using ASP.NET MVC, how to best avoid writing both the Add View and Edit View?
Best way to bind Windows Forms properties to ApplicationSettings in C#?
What's the best way to implement field validation using ASP.NET MVC?
How do I handle page flow in MVC (particularly asp.net)
How do I get rid of Home in ASP.Net MVC?
ASP.NET Model-view-controller (MVC) - where do I start from?
php Zend / MVC without mod_rewrite
RSS Feeds in ASP.NET MVC
MVC Learning Resources
Validating posted form data in the ASP.NET MVC framework
A Stack Overflow Podcast throwback: What is to be done about tag soup?
Use the routing engine for form submissions in ASP.NET MVC Preview 4
How do you get a custom id to render using HtmlHelper in MVC
MVC pattern question: Who has what? who calls what?
MVC Preview 4 - No route in the route table matches the supplied values.
Is there a way to include a fragment identifier when using Asp.Net MVC ActionLink, RedirectToAction, etc. ?
In ASP.NET MVC I encounter an incorrect type error when rendering a user control with the correct typed object
Public/Popular Websites using JavaServer Faces
ASP.NET MVC - Is it worth it yet?
Multiple languages in an ASP.NET MVC application?
Is it better to create Model classes, or just stick with generic database utility class?
Looking for a MVC Sample for WinForms
What are MVP and MVC and what is the difference?
How to RedirectToAction in ASP.NET MVC without losing request data