I've removed the Identity authorisation from a MVC 5 app and started using Brock Allen's Membership Reboot but for some reason I can now access actions with the 'Authorize' attribute even when I haven't signed in? Can someone please tell me what I may have missed out or haven't done? Thanks!
Asked
Active
Viewed 1,537 times
2
-
Post your code please. – Ufuk Hacıoğulları Feb 15 '14 at 16:21
-
Code would help. I am thinking of using this as well in my code. – VoltaicShock Feb 15 '14 at 23:32
2 Answers
1
Either your authentication cookie is not being issued or the cookie is not being processed. Check to see if the username is there (or if IsAuthenticated is true).
Brock Allen
- 7,385
- 19
- 24
0
It looks like you are not expiring your forms authentication cookie.
Try clearing your browser of cookies and try hitting a page with the [Authorize] attribute.
Rhs
- 3,188
- 12
- 46
- 84