Home/ Questions/Q 7750001
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-01T11:10:40+00:00

I’m using the SignalR Javascript client and ASP.NET ServiceHost. I need the SignalR hubs

  • 0

I’m using the SignalR Javascript client and ASP.NET ServiceHost. I need the SignalR hubs and callbacks to only be accessible to logged in users. I also need to be able to get the identity of the currently logged in user from the Hub using the FormsIdentity from HttpContext.Current.User.

  1. How do I secure the hub’s so that only authenticated users can use SignalR?
  2. How do I get the identity of the currently logged in user from the Hub?
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You should use the this.Context.User.Identity that is available from the Hub. See a related question

    EDIT: To stop unauthenticated users:

    public void ThisMethodRequiresAuthentication()
{
  if(!this.Context.User.Identity.IsAuthenticated)
  {
    // possible send a message back to the client (and show the result to the user)
    this.Clients.SendUnauthenticatedMessage("You don't have the correct permissions for this action.");
    return;
  }

  // user is authenticated continue
}

    EDIT #2:
    This might be better, just return a message

     public string ThisMethodRequiresAuthentication()
    {
      if(!this.Context.User.Identity.IsAuthenticated)
      {
        // possible send a message back to the client (and show the result to the user)
        return "You don't have the correct permissions for this action.");

       // EDIT: or throw the 403 exception (like in the answer from Jared Kells (+1 from me for his answer), which I actually like better than the string)
       throw new HttpException(403, "Forbidden");
      }

      // user is authenticated continue

      return "success";
    }
    • 0