What is Authorization filter in asp.net MVC?

Question

Steilla Mitchel · Answer

Authorization Filter in asp.net MVC :
ASP.NET MVC Authentication filter is runs before other filters or actin methods. Authentication filter is to confirm that the is valid or invalid. These filter implements the interface 'IAuthenticationFilter'and  and base class 'ActionFilterAttribute'. asp.net mvc filters are used to add extra logic validation at the different level in mvc framework request processing. Authorization filter is used to implement the authentication and authorization for controller action.
using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Mvc;
using System.Web.Security;
namespace Mindstick.Filters
{
public class Myfilter : FilterAttribute, IAuthorizationFilter
{
public void OnAuthorization(AuthorizationContext filterContext)
{
if (filterContext.HttpContext.Request.IsAuthenticated)
{
if (!Roles.IsUserInRole('Admin'))
{
ViewResult result = new ViewResult();
result.ViewName = 'Error';
result.ViewBag.ErrorMessage = 'Invalid User Type';
filterContext.Result = result;
}
}
}
}
}

forum

What is Authorization filter in asp.net MVC?

Kalin

Can you answer this question?

1 Answers

Liked By