Say I have a xml like the following which gets posted to an api

Question

0

Asked: June 9, 20262026-06-09T16:12:06+00:00 2026-06-09T16:12:06+00:00

Say I have a xml like the following which gets posted to an api

0

Say I have a xml like the following which gets posted to an api controller:

<request>
<header><api_key>Somekey</api_key></header>
</request>

If I want to validate the api key in a custom AuthorizationFilterAttribute like so:

public override void OnAuthorization(HttpActionContext actionContext)
{
    // Deserialize the posted message and validate the api key.
}

How can I do that without having to manually deserialize it?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-09T16:12:07+00:00

Editorial Team

2026-06-09T16:12:07+00:00Added an answer on June 9, 2026 at 4:12 pm

What do you mean you don’t wnat to “manually deserialize it”? Are you referring to the automatic modelbinding that the controllers support? If so, you won’t be able to take advantage of those at that point in the pipeline.

To echo peco’s comment, you shouldn’t be putting an api key in the body but rather in the header or querystring.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

Say I have a xml like the following which gets posted to an api

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply