Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
Currently when using authentication, the framework will redirect an unauthorized request back to a login page even when the user is already logged in rather than show an ‘access denied’ page or use the standard HTTP response code for access denied.
Phil Haack did a good blog post on this just the other week
Prevent Forms Authentication Login Page Redirect When You Don’t Want It
It’s basicly a short coming of the (current) .Net architecture,
He suggests a few options to get around this, normally I’d put some code here rather than just a link, but he explains is in some good detail and external links.