Use attribute to create an IP restriction request

Question

Use attribute to create an IP restriction request

I would like to do the following (Pseudo Code):

[InternalOnly]
public ActionResult InternalMethod()
{ //magic }

The " InternalOnly" attribute is for methods that must check the IP address of a request HttpContextfor a known value before doing anything else.

How can I create this attribute " InternalOnly"?

+3

c # asp.net-mvc

Alex Jun 2 '09 at 23:47

source share

2 answers

This is an example of a problem that can be solved with AOP (Aspect-Oriented Programming). For this type, I usually recommend PostSharp .

, PostSharp , , .

+1

Andrew Hare 02 . '09 23:48

Todd smith · Accepted Answer · 2009-06-03T00:04:55+0000

You can create your own filter attribute:

public class InternalOnly : FilterAttribute
{
    public void OnAuthorization (AuthorizationContext filterContext)
    {
        if (!IsIntranet (filterContext.HttpContext.Request.UserHostAddress))
        {
            throw new HttpException ((int)HttpStatusCode.Forbidden, "Access forbidden.");
        }
    }

    private bool IsIntranet (string userIP)
    {
        // match an internal IP (ex: 127.0.0.1)
        return !string.IsNullOrEmpty (userIP) && Regex.IsMatch (userIP, "^127");
    }
}

Use attribute to create an IP restriction request

More articles: