Custom authentication filter

LSamuel · April 12, 2019, 6:54am

Good afternoon,

We have a custom authentication filter that is run on every request to do some custom auth checks for us defined as follows:

public class ValidateAuthenticationAttribute : AuthenticateAttribute
{
        public override async Task ExecuteAsync(IRequest req, IResponse res, object requestDto)
    
               await base.ExecuteAsync(req, res, requestDto);
                .....
}

Just wanted to confirm what checks are done as part of the call to base.ExecuteAsync? Are ss-pid validity checks done here?
Also, what happens when this call fails?

Thanks,
Leeny

mythz · April 12, 2019, 8:23am

Yes the [Authenticate] validates if the user has an Authenticated User Session, check the implementation of AuthenticateAttribute.cs for the behavior, it either redirects for HTML requests or returns a 401 for other API requests.