Home/ Questions/Q 6131527
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-23T16:59:09+00:00

I have created a custom AuthorizeAttribute which verifies some OAuth credentials that are sent

  • 0

I have created a custom AuthorizeAttribute which verifies some OAuth credentials that are sent inside the HTTP header. I am using some of these credentials to identify who is making the request. Once I parse this information in the AuthorizeAttribute is there any way to pass it over so that the data can be assigned to an instance variable of the Controller? Then anywhere in my Controller I will have the ID of the requesting party.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Original answer

    You should be able to do this in your filter

    filterContext.HttpContext.Items["test"] = "foo";

    And then this in your action

    _yourVariable = HttpContext.Items["test"];

    You’d probably want to use a more unique key than "test", but that’s the idea.

    EDIT There are two reasons we do this in the action rather than the constructor:

    1. A Controller’s constructor fires before OnAuthorization, so the item will not yet be set.
    2. The HttpContext is not yet set in the Controller’s constructor.

    Alternative solution

    1. Create a new OAuthController : Controller
    2. Override OnAuthorization
    3. Move the logic from your filter into OAuthController.OnAuthorization
    4. Set a protected field (i.e., protected object myAuthData) in OAuthController
    5. Have your other controllers inherit from OAuthController instead of Controller
    6. Your other controllers can access myAuthData.
    • 0