Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Passing username to Web Api methods in ASP.NET MVC 4

Tags:

asp.net-mvc

asp.net-web-api

asp.net-mvc-4

I am using ASP.NET MVC 4 with Web Api

I have the following ApiController.

public class ProductsController : ApiController
{
    public List<Product> GetProducts()
    {
        return _productService.GetAllProducts();
    }

    public List<Product> GetProductsFromId(string username)
    {
        return _productService.GetProductsFromUsername(username);
    }
}

Now if you see the second Action GetProductsFromId(string username) here I need to pass username which earlier (i.e before upgrading from MVC 3) I was using User.Identity.Username to get the username.

How should I handle this in such a scenario.

How do I pass the username ? Is there something I could do.

Also the I dont want to use User.Identity.Username inside the GetProductFromId(string username) method as it will defeat the entire purpose of using web api and will not be testable too.

Please guide me help me on this. Thanks

like image 265
Yasser Shaikh Avatar asked Dec 12 '22 21:12

Yasser Shaikh

1 Answers

Also the I dont want to use User.Identity.Username inside the GetProductFromId(string username) method as it will defeat the entire purpose of using web api and will not be testable too.

That's exactly what you should use:

[Authorize]
public List<Product> GetProductsFromId()
{
    string username = User.Identity.Name;
    return _productService.GetProductsFromUsername(username);
}

Notice the [Authorize] attribute. Depending on the authorization scheme you are using the User.Identity will be populated differently. For example if you have enabled forms authentication then the username will obviously come from the forms authentication cookie that the client need to pass when invoking the action. You could also write a custom handler for example if you are using basic authentication instead of forms authentication. I wrote an example here.

This doesn't defeat any purpose of unit testing. This method is perfectly fine unit testable. The User property of the ApiController is an IPrincipal which could be trivially mocked in a unit test. For example with Moq:

// arrange
var sut = new ProductsController();
var user = new Mock<IPrincipal>();
var identity = new Mock<IIdentity>();
user.Setup(x => x.Identity).Returns(identity.Object);
identity.Setup(x => x.Name).Returns("john");
Thread.CurrentPrincipal = user.Object;

// act
var actual = sut.GetProductsFromId();

// assert
...
like image 132
Darin Dimitrov Avatar answered Jan 28 '23 20:01

Darin Dimitrov
Sign in to Comment

Related questions

Anyone using Sendgrid's parse API with c# ASP.NET MVC [closed]
Preventing action in web application from being called twice (ASP.NET MVC)
Display MVC3 Unobtrusive ValidationSummary errors in a jQuery UI Dialog
MVC3 Razor and Modal popup
Publishing Website on Visual Studio 2010 fails (MVC3)
make use of User.Identity.Name when user first hits the site
Avoiding using a "using" clause in razor view
Razor View To Word Document or PDF
How to setup complex routing in asp.net MVC
Consolidate many if conditions to a single LINQ statement if possible
How to use @ symbol in MVC?
Validating domain model using extension methods
How do I prevent IE save file dialog when using fileupload in asp.net mvc
How to supress header Vary:* when using OutputCacheProfiles
How to get TeamCity working with ASP.NET MVC 3 web project
show div if unobtrusive validation was invalid and hide it if Valid in MVC 3
ASP.NET MVC Database access
asp.net mvc 3 razor & html table
How to get image from Google static map API
Telerik grid ClientTemplate

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!