Overriding controller AuthorizeAttribute for just one action

by

In MVC 5 you can override the authorization for any action using the new attribute OverrideAuthorization. Basically, you add it to an action that has a different authorization configuration than the one defined in the controller.

You do it like this:

[OverrideAuthorization]
[Authorize(Roles = "Employee")]
public ActionResult List() { ... }

More information at http://www.c-sharpcorner.com/UploadFile/ff2f08/filter-overrides-in-Asp-Net-mvc-5/

In ASP.NET Core 2.1 there’s no OverrideAuthorization attribute and the only thing you can do is make an action anonymous, even if the controller is not. More information at https://learn.microsoft.com/en-us/aspnet/core/security/authorization/roles?view=aspnetcore-2.1

One option is to do it this way:

[Authorize(Roles = "Admin,Employee")] // admin or employee
public class XController : Controller 
{
    [Authorize(Roles = "Admin")] // only admin
    public ActionResult ActionX() { ... }

    [AllowAnonymous] // anyone
    public ActionResult ActionX() { ... }
}

More Related Contents:

  1. MVC 4 Razor File Upload
  2. Getting “A potentially dangerous Request.Path value was detected from the client (&)”
  3. How do I write unencoded Json to my View using Razor?
  4. Encrypted configuration in ASP.NET Core
  5. What is an MVC child action?
  6. ASP.NET MVC 3 client-side validation with parameters
  7. Including an anchor tag in an ASP.NET MVC Html.ActionLink
  8. MVC3 unobtrusive validation group of inputs
  9. Can’t Add View from Controller in VS 2015 : “There was an error running the selected code generator”
  10. MVC Razor @foreach
  11. How to fix: Handler “PageHandlerFactory-Integrated” has a bad module “ManagedPipelineHandler” in its module list
  12. Is it possible to create a generic @helper method with Razor?
  13. Razor actionlink autogenerating ?length=7 in URL?
  14. How to remove ASP.Net MVC Default HTTP Headers?
  15. DataAnnotations validation (Regular Expression) in asp.net mvc 4 – razor view
  16. The default XML namespace of the project must be the MSBuild XML namespace
  17. How to redirect HTTP to HTTPS in MVC application (IIS7.5)
  18. RenderAction RenderPartial
  19. Can I pass an anonymous type to my ASP.NET MVC view?
  20. DropDownListFor in EditorTemplate not selecting value
  21. How do I prevent multiple form submission in .NET MVC without using Javascript?
  22. Accept comma and dot as decimal separator [duplicate]
  23. Submitting form and pass data to controller method of type FileStreamResult
  24. Discovering Generic Controllers in ASP.NET Core
  25. Recursion in an ASP.NET MVC view
  26. Using an MVC HtmlHelper from a WebForm
  27. The type or namespace name ‘DbContext’ could not be found [closed]
  28. ASP.NET MVC 3: Required steps for unobtrusive client-side validation of dynamic/AJAX content
  29. Export to Excel in Asp.net MVC [closed]
  30. Html.Raw() in ASP.NET MVC Razor view

Leave a Comment