Why is OnAuthorization called twice in my custom AuthorizationFilterAttribute?

Why is OnAuthorization called twice for my straight forward AuthorizationFilterAttribute?

public class ApiAuthenticateAttribute : AuthorizationFilterAttribute
{
   public void override OnAuthorization(System.Web.Http.Controllers.HttpActionContext actionContext)
    {
        if(NotAuthorized())
            throw new Exception();

    }
}

First Call Stack

Second Call Stack

The problem was with Ninject.Web.WebApi. For some reason it was registering the filter twice. Updating the package to latest (v 3.2.1) fixed the issue.

I had registered the AuthorizeAttribute in the WebAPIconfig.cs:

public static void Register(HttpConfiguration config)
{
   config.Filters.Add(new Global.Security.MyAuthorizeAttribute());

In addition I had decorated the method with the Attribute.

[MyAuthorize]
public IHttpActionResult Get(string name)

This caused the public override void OnAuthorization(System.Web.Http.Controllers.HttpActionContext actionContext) method to be called twice.

The solution is either set one up globally (as a config filter) or add attributes to methods individually.

来源：https://stackoverflow.com/questions/20849343/why-is-onauthorization-called-twice-in-my-custom-authorizationfilterattribute

标签

asp.net-web-api

authorization

易学教程内所有资源均来自网络或用户发布的内容，如有违反法律规定的内容欢迎反馈！
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!