AllowAnonymous not working with Custom AuthorizationAttribute

by

In the AuthorizeAttribute there is the following code:

private static bool SkipAuthorization(HttpActionContext actionContext)
{
    Contract.Assert(actionContext != null);

    return actionContext.ActionDescriptor.GetCustomAttributes<AllowAnonymousAttribute>().Any()
               || actionContext.ControllerContext.ControllerDescriptor.GetCustomAttributes<AllowAnonymousAttribute>().Any();
}

Include this method in your AuthorizeAttribute class then add the following to the top of your OnAuthorization method to skip authorization if any AllowAnonymous attributes are found:

if (SkipAuthorization(actionContext)) return;

More Related Contents:

  1. Why does AuthorizeAttribute redirect to the login page for authentication and authorization failures?
  2. How to add Web API to an existing ASP.NET MVC 4 Web Application project?
  3. Difference between ApiController and Controller in ASP.NET MVC
  4. Uploadify (Session and authentication) with ASP.NET MVC
  5. ASP.NET MVC 4 Web API Authentication with Membership Provider
  6. How to force ASP.NET Web API to always return JSON?
  7. Web API and ValidateAntiForgeryToken
  8. Redirect from asp.net web api post action
  9. Return a JSON string explicitly from Asp.net WEBAPI?
  10. ApiController returns 404 when ID contains period
  11. How do I set the request timeout for one controller action in an asp.net mvc application
  12. ASP.NET MVC – HTTP Authentication Prompt
  13. HttpPost vs HttpGet attributes in MVC: Why use HttpPost?
  14. Context.User.Identity.Name is null with SignalR 2.X.X. How to fix it?
  15. Passing asp.net server parameters to Angular 2 app
  16. HTTP Error 500.19 and error code : 0x80070021
  17. IIS hijacks CORS Preflight OPTIONS request
  18. ASP.NET MVC 4 Application Calling Remote WebAPI
  19. How does a method in MVC WebApi map to an http verb?
  20. Should ServiceStack be the service layer in an MVC application or should it call the service layer?
  21. Is there any attribute relating to AJAX to be set for ASP.NET MVC controller actions?
  22. Discovering Generic Controllers in ASP.NET Core
  23. Is it possible to create a Logon System with ASP.NET MVC but not use the MembershipProvider?
  24. ASP.NET Web API, unexpected end of MIME multi-part stream when uploading from Flex FileReference
  25. How to create two footer rows in jqgrid
  26. ASP.NET WebApi vs MVC? [closed]
  27. AutoMapper.Mapper does not contain definition for CreateMap
  28. Routing in Asp.net Mvc 4 and Web Api
  29. ASP.Net WebAPI area support
  30. Nested resources in ASP.net MVC 4 WebApi

Leave a Comment