tags:

views:

72

answers:

1
Q: 

How to handle UnauthorizedRequest via Ajax call in Asp.net MVC2

Brief:

I have a sub classed AuthorizeAttribute in my framework in which I am doing custom authorization.

I am in the process of switching from normal asp.net mvc view rendering to Ajax rendering via jQuery. Hence every link in the application does a ajax call to get the data.

In order to cater for this I have converted most of my pages to partial views so that each ajax request only gets the portion that needs to be updated on the page.

During the normal view rendering when a request was unauthorized it was being redirected to the logon page described in the web.config. After converting to Ajax things are a bit different as I dont want the markup for the logon page in the ajax request but want a structured response in it so that I can act accordingly inside the ajax call.

In order to do this I believe I have to override the HandleUnauthorizedRequest method in the sub classed AuthorizeAttribute class and set the filterContext.Result to a json result. But in doing so how would I get to distinguish between a unauthorized request and a successfull request, because from the ajax calls point of view both are successful responses; hence will be handled in the success handler.

What would be the correct way to deal with this issue?

A: 

I have just figured it out, I can filter between normal requests and ajax requests in the HandleUnauthorized Request method that I override in my AuthorizeAttribute sub class. That way for an ajax request I can create a json result or something else for that matter, and for normal requests it would still show up the login page. the code is as follows:

protected override void HandleUnauthorizedRequest(AuthorizationContext filterContext)
    {
        if (filterContext.RequestContext.HttpContext.Request.IsAjaxRequest())
        {
            JsonResult UnauthorizedResult = new JsonResult();
            UnauthorizedResult.Data = "{ request : 'unauthorized' }";
            UnauthorizedResult.JsonRequestBehavior = JsonRequestBehavior.AllowGet;
            filterContext.Result = UnauthorizedResult;
        }
        else
        {
            base.HandleUnauthorizedRequest(filterContext);
        }
    }

still I will not mark my question as resolved, so if someone can suggest a better way of doing it, I am still open to suggestions.

Nosh  2010-07-27 01:56:30
Alright this is working out well during the session, as soon as the session expires the login page is again sent as a response to an ajax request the status of which is success. Hence I will have to do something to detect that the session has expired, has any one got any suggestions?
Nosh  2010-07-30 04:13:21

related questions

Redirecting to specified controller and action in asp.net mvc 2 action filter
Rendering the field name in an EditorTemplate (rendered through EditorFor())
Missing Classes and Methods in ASP.net MVC 2
using Html.EditorFor with an IEnumerable<T>
ASP.NET MVC and ViewState
ASP.NET MVC 2 DisplayFor()
Maintaining ViewData between RenderAction calls
ASP.NET MVC - Current Action from controller code?
Is it a good idea to put content access logic in a BaseController?
HttpModule with ASP.NET MVC not being called
Ways to define an ASP.NET MVC Route
ASP.NET MVC 2 Preview 1 - DataAnnotation Validation with complex model object
ASP.NET MVC 2 Preview 1 - Problem compiling StructureMap Controller Factory
ASP.NET-MVC2 Preview 1: Are There Any Breaking Changes?
Site navigation for an 'Admin' application in ASP.NET MVC
Html.LabelFor Specified Text [ASP.NET MVC 2]
Is it viable to use ASP.NET MVC 2 Preview 1 in a production application?
Unit tests on MVC validation
Form input validation options in ASP.NET MVC 1.0+
Validation: Model or ViewModel
ASP.NET MVC 2 editor template for value types, int
ASP.NET MVC 2 Preview 1 - what is the best way to implement areas?
ASP.NET MVC 2.0 overview information?
Passing Controller a FormCollection and an IList<T>
Best ASP.NET MVC book?