Reputation: 178
Handle bad access_token sent through request using Web API 2 C#
Hi I am using Bearer authentication in my web api 2. After user login i generate access token to the user. Further when they request my web api, they have to send access token in request header. All valid access tokens are requesting web api with out any problem. But I am not sure how to handle bad access tokens (expired). Please let me know the solution if you have. Thanks in advance.
Upvotes: 0
Views: 671
Answers (2)
Reputation: 631
In addition to Mahesh Kava, you may extend AuthorizeAttribute class to return more detailed information for unauthorized request. Refer to this SO question
Upvotes: 1
Reputation: 791
You should use the [Authorize] filter attribute to authorize the request. All bad request with expired tokens will be treated with a 401 unauthorized error
Upvotes: 1
Related Questions
- Return error on invalid or expired token
- How to invalidate bearer token at server
- How to send an error response back to OAuth2 client
- OAuth token and custom errors
- Web API, return 403 when /token call is not secure
- Auth token gets invalidates for unknown reason
- How to handle invalid bearer tokens
- How to make Bearer token invalid
- WebAPI 2 - OAuth 2 intercepting Authorization Token
- How to force Invalid Bearer token in web api?