下面代码可实现记录返回登录页时的地址,时时验证登录信息
(由软谋eleven老师提供)
/// <summary>
/// ajax跟exception一致
/// 检验登陆和权限的filter
/// </summary>
[AttributeUsage(AttributeTargets.Class | AttributeTargets.Method, Inherited = true)]
public class AuthorityFilter : AuthorizeAttribute
{
/// <summary>
/// 未登录时返还的地址
/// </summary>
private string _LoginPath = "";
public AuthorityFilter()
{
this._LoginPath = "/User/Login/Login";
}
public AuthorityFilter(string loginPath)
{
this._LoginPath = loginPath;
}
public override void OnAuthorization(AuthorizationContext filterContext)
{
if(filterContext.ActionDescriptor.IsDefined(typeof(AllowAnonymousAttribute),true)
|| filterContext.ActionDescriptor.ControllerDescriptor.IsDefined(typeof(AllowAnonymousAttribute),true))
{
return;//表示支持控制器、action的AllowAnonymousAttribute
}
var sessionUser = HttpContext.Current.Session["CurrentUser"];//使用session
//var memberValidation = HttpContext.Current.Request.Cookies.Get("CurrentUser");//使用cookie
//验证session是否正确
if (sessionUser == null || !(sessionUser is CurrentUser))
{
HttpContext.Current.Session["CurrentUrl"] = filterContext.RequestContext.HttpContext.Request.RawUrl;
filterContext.Result = new RedirectResult(this._LoginPath);
}
}
}
设置全局详看:点击进入