How to redirect to login page from AuthorizationFilter in asp net core?

Question

When I return ForbidResult() it redirects to AccessDenied page as specified in startup. I want to do same with UnauthorizedResult() but redirect to Login page.

PS I'm not using standard Authorize attribute in controller I have my own.

Authorization Filter :

public class MyFilter : IAuthorizationFilter
{
    //

    public MyFilter()
    {
        //
    }

    public void OnAuthorization(AuthorizationFilterContext context)
    {
        if (context.HttpContext.User.Identity.IsAuthenticated)
        {
            var hasPermission= ... ;
            if (!hasPermission)
            {
                context.Result = new ForbidResult();
            }
        }
        else
        {
            context.Result = new UnauthorizedResult();
        }
    }
}

startup :

services.AddAuthentication.AddCookie(options =>
            {
               options.LoginPath = "/Accounts/Login";
                options.LogoutPath = "/Accounts/Logout";
                options.AccessDeniedPath = "/Accounts/AccessDenied";
            });

Answer 1

You can test with RedirectResult or context.Response.Redirect("/Accounts/Login");

public class MyFilter : IAuthorizationFilter
{
    //

    public MyFilter()
    {
        //
    }

    public void OnAuthorization(AuthorizationFilterContext context)
    {
        if (context.HttpContext.User.Identity.IsAuthenticated)
        {
            var hasPermission= ... ;
            if (!hasPermission)
            {
                context.Result = new ForbidResult();
            }
        }
        else
        {
            context.Result = new RedirectResult("/Accounts/Login");
        }
    }
}

Answer 2

For redirecting to login page which is configured in options.LoginPath = "/Accounts/Login"; , you could try code below:

public class MyFilter : IAuthorizationFilter
{
    //

    public MyFilter()
    {
        //
    }

    public void OnAuthorization(AuthorizationFilterContext context)
    {
        if (context.HttpContext.User.Identity.IsAuthenticated)
        {
            var hasPermission= ... ;
            if (!hasPermission)
            {
                context.Result = new ForbidResult();
            }
        }
        else
        {
            context.Result = new ChallengeResult(CookieAuthenticationDefaults.AuthenticationScheme);
        }
    }
}

How to redirect to login page from AuthorizationFilter in asp net core?

Question

2 answers

solution1
0 2019-09-09 12:00:09

solution2
0 ACCPTED 2019-09-10 02:06:17

How to redirect to login page from AuthorizationFilter in asp net core?

Question

2 answers

solution1 0 2019-09-09 12:00:09

solution2 0 ACCPTED 2019-09-10 02:06:17

solution1
0 2019-09-09 12:00:09

solution2
0 ACCPTED 2019-09-10 02:06:17