Encode hash in ReturnUrl ASP.NET Login control

Question

We have a ASP.NET login control in our aspx:

<asp:Login ID="LogOnControl" runat="server" OnLoginError="OnLogOnError" OnLoggedIn="OnLoggedIn">

and in OnLoggedIn we do:

protected void OnLoggedIn(object sender, EventArgs e)
{
    if (!string.IsNullOrEmpty(Request.QueryString["ReturnUrl"]))
    {
        Response.Redirect(Request.QueryString["ReturnUrl"]);
    }
}

and our ReturnUrl should be something like Default.aspx#/Projects

The problem is that all after hash is trimmed. We need to pass entire URL to server (so encode it somehow).

yeah might help, but in which event should I encode it? at the moment it is being sent to the server I suppose — michal.jakubeczy, Aug 02 '17 at 11:39

score 1 · Accepted Answer · answered Aug 02 '17 at 11:43

1

Jabko87 - you cannot get values after # because it is not being sent to the server. You must develop your own mechanism to handle it.

Compare: Pass URL's with hash value for redirection

And: How to get Url Hash (#) from server side

answered Aug 02 '17 at 11:43

Piotr

1,155
12
29

seems I found a solution, I put hidden input to aspx where I save window.location.hash and on server it comes as POST parameter and I append it to URL where I redirect, seems to work well – michal.jakubeczy Aug 02 '17 at 12:04
Exactly that is what I meant by "developing own mechanism" :) Glad you've made it;) – Piotr Aug 02 '17 at 12:05
Thanks for leading me to it ;) – michal.jakubeczy Aug 02 '17 at 12:18

score 0 · Answer 2 · answered Aug 02 '17 at 12:20

I achieved it by defining hidden input on aspx page:

<input type="hidden" id='<%= ReturnUrlHash %>' name='<%= ReturnUrlHash %>' />

and filling it with JS:

document.getElementById('<%= ReturnUrlHash %>').value = window.location.hash;

and on server side in Logon.aspx.cs I did:

public const string ReturnUrlHash = "returnUrlHash";
protected void OnLoggedIn(object sender, EventArgs e)
{
    string returnUrl = Request.QueryString["ReturnUrl"];
    if (!string.IsNullOrEmpty(returnUrl))
    {
        if (Request.Form.AllKeys.Contains(ReturnUrlHash))
        {
            returnUrl += Request.Form[ReturnUrlHash];
        }

        Response.Redirect(returnUrl);
    }
}

Encode hash in ReturnUrl ASP.NET Login control

2 Answers2