iis - Authenticate Web API session before body upload -


i have simple web api 2 controller handles file uploads. looks this:

[mycustomauthenticationfilter] [authorize] public class filecontroller : apicontroller {     private ifilerepository _filerepository;      public filecontroller(ifilerepository filerepository)     {         _filerepository = filerepository;     }      public async task<fileinfo> post()     {         var stream = await request.content.readasstreamasync();                     var info = await _filerepository.createfileasync(stream);          return new fileinfo(info);     } }

it takes streamed upload client, hands off repository object (which talks azure storage blob container), , returns data uploaded file. simple enough, , works great.

except, authentication filter not applied until client has finished uploading file. authentication simple challenge/response system using token, means client upload several hundred megabytes of data (potentially on slow cellular data connection) before finding out token has expired , need refresh , try again. i'd able examine request header , validate (or reject) possible, doesn't seem doable standard filters. tried creating simple ihttpmodule , hooking beginrequest event, apparently not fire until after upload completes, either.

how can hook pipeline such can validate authorization headers request before client upload completes?

edit add: authenticating doesn't me if can't authorize, based on route in web api. service has few anonymous methods, can't blanket reject un-authenticated users. given architecture of iis , asp.net, maybe means isn't possible.

you'll need make request 2 stage request. 1 authentication request prior file upload request. that's lot of baggage , end point can't process request until finishes receiving it. try separate authorization request before uploading file. if request passes can send file upload. okay solution?


Comments

Post a Comment

Popular posts from this blog

How to put a lock and transaction on table using spring 4 or above using jdbcTemplate and annotations like @Transactional? -

i trying put lock on table while writing on table , if happened in between roll-back . trying convert below code lock table test_g1 read; lock table test_g write; -- begin; start transaction; insert test_g1 values(143); insert test_g values(145); select * test_g1; select * test_g; rollback; select * test_g; unlock tables; how convert above code @transactional spring jdbctemplate code? @transactional(rollbackfor={dataaccessexception.class}) public void test(){ jdbctemplate.execute("insert test1 (id, nam) values (4, 'a')"); throw new dataaccessexception("error") { }; } here trying throw error, insert statement should rollback it's not happening . thanks edit-1 attaching code , doing in jdbcdaoimpl.java , mentioned problem comment above test() . app.java package com.cgiri.javabrains.spring4; import org.springframework.beans.factory.annotation.autowired; import org.springframework.context.applic...
Read more

How to understand 2 main() functions after using uftrace to profile the C++ program? -

i trying uftrace profile following simple c++ program: #include <iostream> class { public: a() {std::cout << "a created" << std::endl;} ~a() {std::cout << "a destroyed" << std::endl;} }; int main() { a; return 0; } the profile result this: # uftrace a.out created destroyed # duration tid function 2.026 [ 4828] | __cxa_atexit(); [ 4828] | main() { [ 4828] | __static_initialization_and_destruction_0() { 89.397 [ 4828] | std::ios_base::init::init(); 0.768 [ 4828] | __cxa_atexit(); 93.029 [ 4828] | } /* __static_initialization_and_destruction_0 */ 94.425 [ 4828] | } /* main */ [ 4828] | main() { [ 4828] | a::a() { 11.104 [ 4828] | std::operator <<(); 10.825 [ 4828] | std::basic_ostream::operator <<(); 24.514 [ 4828] | } /* a::a */ [ 4828] | a::~a() { 0.978 [ 4828] | ...
Read more

c# - Update a combobox from a presenter (MVP) -

i using mvp in project, new in mvp. have 2 comboboxes. when select option in combobox, combobox should filled new data. this action in presenter. view 'view1' in presenter, , introduced combobox1 , combobox2 properties in 'view1', because need 'datasource', 'displaymember', 'valuemember' , 'refresh()' in method below. but, when using pattern, enough send property like public string combobox2 { { return combobox1.selectedvalue.tosstring(); } } into presenter not whole combobox. how can solve problem? public void onselectedindexchangedcombobox1() { if (view1.combobox1.selectedindex == -1) { return; } datatable dt = tools.getdatatable("a path"); var query = (from o in dt.asenumerable() o.field<string>("afield") == farmerview.combobox1.selectedvalue.tostring() orderby o.field<string>("anotherfield") select...
Read more