stackoom
  简体   繁体   中英

asp.net mvc security

 原文  2009-05-12 22:26:25       asp.net-mvc/ authorization/ geneva-framework

Question

How can I disallow anonymous access to my ASP.NET mvc controllers? Specifically, I want to require authenticated access to all controllers but allow anonymous access to resource type files such as .css and .js files. Don't plan on using membership services as I am using Microsoft Geneva.

2 answers

solution1
 1  2009-05-12 23:21:50

One way is to have your controllers inherit from (your own) ControllerBase.

Add the

[Authorize]

attribute to that class.

solution2
 0  2009-05-13 05:56:31

You can use the Authorize attribute (action filter) on each action method in each controller if you don't want to sub-class a base controller.

See here for an introduction to action filters: http://www.asp.net/learn/mvc/tutorial-14-cs.aspx

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Asp.NET MVC and security ASP.net Web Forms and Asp.net MVC Security asp.net WebForms & asp.net MVC security options Dynamic security for ASP.NET MVC ASP.NET MVC ViewBag / TempData Security Security with QueryString values in Asp.net MVC Role based security asp.net mvc Area level security for asp.net mvc RSA Security In Asp.net MVC application ASP.NET MVC Windows Security issue
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM