Home/ Questions/Q 295617
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-12T06:28:26+00:00

I would like to use [Authorize(Roles=Admin)] tags on my controller methods. If a user

  • 0

I would like to use [Authorize(Roles=”Admin”)] tags on my controller methods.

If a user is not an admin I would like to return this user to my login screen.
The default behaviour of returning the user to my login page is reroute my user to “Account/Login” using a Get url.

The problem is, my website’s subpages are all partial views refreshed by Ajax calls, including my login screen.

So my question is:
Is it possible to alter the class below to return a post redirect instead of a get redirect?

public class AjaxAuthorizeAttribute : AuthorizeAttribute
{
  override public void OnAuthorization(AuthorizationContext filterContext)
  {
    base.OnAuthorization(filterContext);
    // Only do something if we are about to give a HttpUnauthorizedResult and we are in AJAX mode.
    if (filterContext.Result is HttpUnauthorizedResult && filterContext.HttpContext.Request.IsAjaxRequest())
    {
      filterContext.Result =  new RedirectResult("../Account/Login");
    }
  }
}
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Apparently the problem seemes solved by removing the 

    [Acceptverbs(HttpVerbs.Post)]

    attribute on my Account controller’s Login method.

    This way we don’t even have to override the AuthorizeAttribute

    🙂

    • 0