Bhavdip Tala: Request Token with ActionFilterAttributer in MVC

Monday 4 December 2017

Request Token with ActionFilterAttributer in MVC

using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Helpers;
using System.Web.Mvc;
using Demo.Utility;

namespace Demo.Filter
{
public class SessionExpireFilterAttribute : ActionFilterAttribute
{
public override void OnActionExecuting(ActionExecutingContext filterContext)
{
HttpContext ctx = HttpContext.Current;

if (filterContext.HttpContext.Request.IsAjaxRequest())
{
if (SessionFacade.UserSession == null)
{
filterContext.HttpContext.Response.StatusCode = 401;
filterContext.HttpContext.Response.End();
}

}
else
{
if (SessionFacade.UserSession == null)
{
filterContext.Result = new RedirectResult("~/Login");
return;
}
}
base.OnActionExecuting(filterContext);
}
}

[AttributeUsage(AttributeTargets.Method | AttributeTargets.Class,
AllowMultiple = false, Inherited = true)]
public sealed class ValidateJsonAntiForgeryTokenAttribute
: FilterAttribute, IAuthorizationFilter
{
public void OnAuthorization(AuthorizationContext filterContext)
{
if (filterContext == null)
{
throw new ArgumentNullException("filterContext");
}

var httpContext = filterContext.HttpContext;
var cookie = httpContext.Request.Cookies[AntiForgeryConfig.CookieName];
AntiForgery.Validate(cookie != null ? cookie.Value : null,
httpContext.Request.Headers["__RequestVerificationToken"]);
}
}
}

Bhavdip Tala

Monday 4 December 2017

Request Token with ActionFilterAttributer in MVC

No comments:

Post a Comment

SqlDataBaseLibrary