How can I return a HTTP 401 from a WCF service?
Asked
Active
Viewed 1.0k times
7
-
Are doing the [OperationContract, WebInvoke] [Service] thing? – Tim Lovell-Smith Dec 08 '11 at 00:38
4 Answers
6
If you are programming a REST-service it can be done this way:
private IWebOperationContext context = new WebOperationContextWrapper(WebOperationContext.Current); // Get the context
context.OutgoingResponse.StatusCode = HttpStatusCode.Unauthorized; // Set the 401
Jochen
- 1,488
- 16
- 21
6
throw new WebFaultException(System.Net.HttpStatusCode.Unauthorized);
Notes:
MSDN: When using a WCF REST endpoint (WebHttpBinding and WebHttpBehavior or WebScriptEnablingBehavior) the HTTP status code on the response is set accordingly. However, WebFaultException can be used with non-REST endpoints and behaves like a regular FaultException.
Irvin Dominin
- 30,819
- 9
- 77
- 111
Tim Lovell-Smith
- 15,310
- 14
- 76
- 93
1
If you're using the WebServiceHost2 factory from the WCF REST Starter Kit, you can also throw specific WebProtocolException and specify a HTTP return code:
(source: robbagby.com)
(source: robbagby.com)
(source: robbagby.com)
There's also a HttpStatusCode.Unauthorized which corresponds to the 401 status code.
See Rob Bagby's excellent blog post Effective Error Handling with WCF REST for more detail on the various ways of specifying HTTP return codes. (screenshots are from Rob's blog post - he deserves all the credit for this.)
Glorfindel
- 21,988
- 13
- 81
- 109
marc_s
- 732,580
- 175
- 1,330
- 1,459
0
Depending on when you need to do the authorization check, you could do it in an HttpModule using something like the following:
HttpContext context = HttpContext.Current;
context.Response.StatusCode = 401;
context.Response.End();
WayneC
- 2,530
- 3
- 31
- 44