MVC5, error handling on missing rights

Asked Jun 23 '14 at 08:32

Active Jun 23 '14 at 08:32

Viewed 96 times

I have a MVC5 site where I use roles like this:

[Authorize(Roles = ApplicationTypes.ReadOnlyRole)]
public partial class HomeController : BaseController

-and on missing rights, the user will see an exception + the callstack if custom-error-mode is ON and some other standard page if OFF.

How do I catch the access denied exception and redirect to another page ?? I'm aware that I could create a custom attribute and redirect from there, but this should be standard functionality and it shouldn't be necessary to come up with something custom made.

The site use windows authentication, so the user is already authenticated, but could fail later on if the roles is missing.

Thank you.

asked Jun 23 '14 at 08:32

Peter Larsen 'CPH'

in the web.config you could redirect to the login page.. or do you want to redirect on base of the action? – lordkain Jun 23 '14 at 08:36
But the user is already authenticated (authentication mode="Windows") – Peter Larsen 'CPH' Jun 23 '14 at 08:47
good point.. you probably seen http://stackoverflow.com/questions/238437/why-does-authorizeattribute-redirect-to-the-login-page-for-authentication-and-au – lordkain Jun 23 '14 at 08:50
1

Yes I have, but it's a very old question and perhaps things have changed... – Peter Larsen 'CPH' Jun 23 '14 at 09:07

MVC5, error handling on missing rights

0 Answers0