user3009197
Reputation: 21
avoid Authorization in partial view
that the code for my homecontroller.
public class HomeController : Controller
{
[AllowAnonymous]
public PartialViewResult FB_InviteFriends()
{
return PartialView("~/Views/ListContats/_fbinvite.cshtml");
}
[Authorize]
public ActionResult YourZone()
{
return View();
}
}
i want to access the FB_InviteFriends() method public/unAuthorized users, by using this url:
/Home/yourzone/FB_InviteFriends
but it will redirect me to login page due to [Authorize] attribute.
now my question is that is there any way that i can avoid the Authorization without removing the [Authorize] attribute as i need it on yourzone. any global.asax filter any route filter which may help.
Upvotes: 2
Views: 933
Answers (1)
dove
Reputation: 20674
Add an exception to authorization for this path, e.g.
<location path="Home/yourzone/FB_InviteFriends">
<system.webServer>
<security>
<authentication>
<windowsAuthentication enabled="false" />
<anonymousAuthentication enabled="true" />
</authentication>
</security>
</system.webServer>
</location>
you may have to adjust according to what authentication you use on your site.
Upvotes: 3
Related Questions
- Are partial views a good way to restrict user access?
- Authorization Redirect for Partial Views and Views
- MVC4 Partial View Ajax Load with Authorization
- MVC 3 - authorization within a view
- Authorizing sections of a view in MVC
- asp mvc fine grained view permission
- How to keep views free of authorization logic in mvc?
- ASP.NET MVC3 view authorization design
- MVC3 Forms Authentication: Role Specific Visible Items in Partial View
- Authorise part of a View IN ASP.NET MVC