using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Mvc;
namespace CommonUtil
{
/// <summary>
/// .net的mvc过滤器
/// ip限制
/// 使用:
/// [MvcIPAuth]
/// public class ApiZanController : Controller
/// </summary>
public class MvcIPAuth : AuthorizeAttribute
{
/// <summary>
/// 允许访问的ip<add key="IPS_Zan" value="*.***.**.**,***.*.*.*" />
/// </summary>
private static List<string> IPS_Zan= (ConfigurationHelper.AppSetting("IPS_Zan")??"").Split(',').ToList();
protected override bool AuthorizeCore(HttpContextBase httpContext)
{
//获取请求客户端的ip
var ip=HttpHelper.GetClientIp();
return IPS_Zan.Exists(x=>x==ip);
}
protected override void HandleUnauthorizedRequest(AuthorizationContext filterContext)
{
JsonResult data = new JsonResult();
data.Data = "{\"msg\":\"该IP不允许请求接口\"}";
data.JsonRequestBehavior = JsonRequestBehavior.AllowGet;
filterContext.Result = data;
}
}
}