Form Authentication in MVC

From Logic Wiki
Jump to: navigation, search


How do you implement forms authentication in MVC?

Forms authentication is implemented the same way as we do in ASP.NET. So the first step is to set authentication mode equal to forms. The “loginUrl” points to a controller here rather than page. 

<authentication mode="Forms">
  <forms loginUrl="~/Home/Login" timeout="2880"/>
</authentication>

We also need to create a controller where we will check the user is proper or not. If the user is proper we will set the cookie value. 

public ActionResult Login()
{
if ((Request.Form["txtUserName"] == "Shiv") && (Request.Form["txtPassword"] == "Shiv@123"))
 {
  FormsAuthentication.SetAuthCookie("Shiv",true);
  return View("About");
 }
 else
 {
  return View("Index");
 }
}

All the other actions need to be attributed with “Authorize” attribute so that any unauthorized user if he makes a call to these controllers it will redirect to the controller ( in this case the controller is “Login”) which will do authentication. 

[Authorize]
PublicActionResult Default()
{
return View();
}
[Authorize]
publicActionResult About()
{
return View();
}
Retrieved from "https://www.logicwiki.co.uk.logicmade.com/index.php?title=Form_Authentication_in_MVC&oldid=627"