ServiceAuthorizeAttribute class

namespace: Serenity.Services   assemblySerenity.Net.Web

Authorizes access to a service action. Optionally checks the permission provided as the first argument. Use special permission key "?" to check for logged-in users, and "*" to allow anyone including anonymous access. This returns a service error instead of raising an exception like PageAuthorize attribute.

[AttributeUsage(AttributeTargets.Class | AttributeTargets.Method)]
public class ServiceAuthorizeAttribute : Attribute, IResourceFilter

Public Members

name description
ServiceAuthorizeAttribute() Creates an instance of the ServiceAuthorizeAttribute.
ServiceAuthorizeAttribute(…) Creates an instance of the ServiceAuthorizeAttribute, while deriving the permission key from the passed type's ReadPermissionAttribute (4 constructors)
Override { get; set; } Should this attribute override the controller level attribute if any. The default is true.
Permission { get; } The permission key

Protected Members

name description
ServiceAuthorizeAttribute(…) Creates an instance of the service authorize attribute while trying to determine the permission key from one of the permission attribute types the sourceType has.
OrPermission { get; set; } And optional secondary permission to check by OR, e.g. if this is specified an user does not have the Permission, the user will still be allowed access if he has the OrPermission.

See Also