Reputation: 906
Formsauthentication should be disabled for a single page
I have a problem with Formsauthentication and my ajax calls. I like the way Formsauthenticaction works for a normal asp.net website.
However I have a page in my asp.net website which gets called using AJAX. This page will in some case set the Response StatusCode to Unauthorized (401).
Response.StatusCode = 401;
Response.End();
Now the Response should end and I would like to see this 401 statuscode propagated to the frontend. However Formsauthentication decides otherwise and changes this status to a 302 and redirects to the loginpage. Thus I can not check for status 401 on my UI.
To inform you further: I am running an asp.net 4.0 website (Not MVC) on IIS 7.
I tried configuring my web.config with following node:
<location path="mypage.aspx">
<system.web>
<authorization>
<allow users="*"/>
</authorization>
</system.web>
</location>
But I guess by setting the Unauthorized status triggers the Formsauthentication module nonetheless.
Upvotes: 2
Views: 179
Answers (1)
Reputation: 21137
Here are a few proposed solutions from Phil Haack's blog.
Prevent Forms Authentication Login Page Redirect When You Don’t Want It
Upvotes: 3
Related Questions
- How to disable forms authentication
- Forms authentication: disable redirect to the login page
- ASP.NET Forms Authorization not working for per page setup
- How to set Request.IsAuthenticated to true when not using FormsAuthentication.RedirectFromLoginPage?
- Remove authentication in ASP.net MVC single page application
- AJAX and FormsAuthentication, how prevent FormsAuthentication overrides HTTP 401?
- How to avoid Form Authentication for 2 pages
- ignore authentication for a single page
- Disable form authentication for public pages
- Avoid Authentication