tags:

views:

47

answers:

3
+2  Q: 

Only allow access to action if redirected from specific action

Hi

Is there a good way to restrict the access to an action, so you can only access it, if you were redirected from another action. For example:

    [HttpPost]
    public virtual ActionResult Create(MyViewModel vm)
    {            
        if (ModelState.IsValid)
        {
            // do some work

            return RedirectToAction("CreateSuccess");
        }
        else
        {
            return View(vm);
        }
    }


    public virtual ActionResult CreateSuccess()
    {
        // only allow execution if you were redirected from Action "Create" 
    }
+1  A: 

There is no way to know the "from" action unless you include parameters indicating such. The easiest way is to append a "SourceAction" or "FromAction" parameter and check it in the "destination" action.

Dave Swersky  2010-10-05 14:12:19
+4  A: 

An easy way would be to store a flag in TempData in the first method and check that the flag exists in the method that is redirected to.
TempData is there to pass state information between action requests and will only last the duration of the request so you will not need to worry about clearing it down.

Andy Rose  2010-10-05 14:12:25
+1  A: 

The question is, why do you want to do that? Maybe there is a better solution for your primary problem.

Anyway, you can use the HttpContext.Current.Request.UrlReferrer Property to check the previous page Url.

Guilherme Oenning  2010-10-05 14:15:35
The reason is that I want to display some information, that should only be visible for people who successfully (and therefore authorized) performed a previous action
Fabiano  2010-10-05 14:25:35
Then I would do what Andy Rose did, but using Session insted of TempData. By using the Session your telling your application that the current user has performed a given action and he is able to execute that action. Or even put it on a Database if you want to use that information for longer than a Session.
Guilherme Oenning  2010-10-05 14:31:10

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?