ASP.NET MVC 3 OnActionExecuting 导致无限循环
我有重写的 OnActionExecuting 方法(如果用户已登录,则在操作执行之前进行检查)
public class AuthenticationAttribute : ActionFilterAttribute
{
public override void OnActionExecuting(ActionExecutingContext filterContext)
{
if (!filterContext.HttpContext.User.Identity.IsAuthenticated)
{
string redirectUrl = string.Format("?returnUrl={0}", filterContext.HttpContext.Request.Url.PathAndQuery);
filterContext.HttpContext.Response.Redirect(FormsAuthentication.LoginUrl + redirectUrl, true);
}
else
base.OnActionExecuting(filterContext);
}
}
为什么 - 如果用户未登录 - 响应将再次重定向到该方法。为什么 ?
I have that overriden OnActionExecuting method (to check before action execute if user is logged in)
public class AuthenticationAttribute : ActionFilterAttribute
{
public override void OnActionExecuting(ActionExecutingContext filterContext)
{
if (!filterContext.HttpContext.User.Identity.IsAuthenticated)
{
string redirectUrl = string.Format("?returnUrl={0}", filterContext.HttpContext.Request.Url.PathAndQuery);
filterContext.HttpContext.Response.Redirect(FormsAuthentication.LoginUrl + redirectUrl, true);
}
else
base.OnActionExecuting(filterContext);
}
}
Why - if user is not logged in - the response is redirected to that method again. Why ?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
这可能是因为您重定向到的控制器操作(我认为是登录 URL)也用此属性装饰。因此,如果用户未经过身份验证,他将被重定向到登录操作,并且由于他未经过身份验证,他会被重定向到登录操作,依此类推。就我个人而言,我建议您使用
[Authorize]属性,而不是编写此类操作过滤器。That's probably because the controller action that you are redirecting to (the login url I think) is also decorated with this attribute. So if the user is not authenticated he gets redirected to the login action and because he is not authenticated he gets redirected to the login action and so on. Personally I would recommend you using the
[Authorize]attribute instead of writing such action filter.