首页 \ 问答 \ 角度评论指令 - 目的/意图/最佳实践(Angular Comment Directive - Purpose / Intent / Best Practice)

角度评论指令 - 目的/意图/最佳实践(Angular Comment Directive - Purpose / Intent / Best Practice)

 阅读， http：//www.w3schools.com/angular/angular_directives.asp我遇到了一个在注释中调用指令的例子，具体来说：  
<!-- directive: w3-test-directive -->
 
 您可以在http://www.w3schools.com/angular/tryit.asp?filename=try_ng_directive_comment中看到它的工作原理  
 这似乎对我很感兴趣。 有人可以描述你想要在评论中执行这样的事情时的目的或意图吗？ 乍一看，它看起来像糟糕的设计，也许还有什么可以避免的？ 如果我错了，我想了解何时使用的意图/目的和最佳实践。 

Reading through, http://www.w3schools.com/angular/angular_directives.asp I came across an example where a directive is called in a comment, specifically: 
<!-- directive: w3-test-directive -->
 
You can see it work in http://www.w3schools.com/angular/tryit.asp?filename=try_ng_directive_comment 
This seemed concerning to me. Can someone please describe the purpose or intent on when you'd desire something in a comment to be executed like this? At first glance it looks like bad design and perhaps something to avoid? If I'm wrong, I'd like to understand the intent/purpose and best practice of when to use.

原文：https://stackoverflow.com/questions/37924755

更新时间：2021-09-11 18:09

最满意答案

 通常这应该自动发生。 当匿名用户访问受保护的资源时（他是匿名的，因为他的会话过期），FormsAuthentication模块截获这些请求并通过追加指向受保护资源的ReturnUrl查询字符串参数重定向到您在web.config中注册的loginUrl 。  
 因此，例如，如果您将~/Account/LogOn配置为您的登录网址，并且匿名用户尝试点击~/Foo/Bar受保护的资源，他将被重定向到~/Account/LogOn?ReturnUrl=%2FFoo%2FBar 。  
 然后，他将看到一个登录页面，在那里他将输入他的凭据并将该表单提交给Account控制器上的[HttpPost] LogOn操作。 凭证将被验证，如果有效，将生成一个新的表单身份验证cookie，并将用户重定向到最初请求的受保护资源。  
 以下是LogOn操作的相应代码：  
[HttpPost]
public ActionResult LogOn(LogOnModel model, string returnUrl)
{
    if (ModelState.IsValid)
    {
        if (Membership.ValidateUser(model.UserName, model.Password))
        {
            FormsAuthentication.SetAuthCookie(model.UserName, model.RememberMe);
            if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1 && returnUrl.StartsWith("/")
                && !returnUrl.StartsWith("//") && !returnUrl.StartsWith("/\\"))
            {
                return Redirect(returnUrl);
            }
            else
            {
                return RedirectToAction("Index", "Home");
            }
        }
        else
        {
            ModelState.AddModelError("", "The user name or password provided is incorrect.");
        }
    }

    // If we got this far, something failed, redisplay form
    return View(model);
}
 
 请注意，成功验证后，用户是如何重定向到默认Home/Index或returnUrl参数的。  
 当然，我在这里讲的所有这些故事都适用于由Visual Studio创建的默认ASP.NET MVC模板。 如果由于某种原因您修改了此模板，这可能会解释您正在观察的行为。  
 在任何情况下，从我的回答中要记住的事情是，如果您使用的是表单身份验证，则该模块将作为ReturnUrl查询字符串参数将最初请求的受保护资源传递到配置的登录页面。 因此，在成功验证后，您需要将用户重定向到此页面。 

Normally this should happen automatically. When an anonymous user hits a protected resource (he is anonymous because his session expired), the FormsAuthentication module intercepts this requests and redirects to the loginUrl you registered in your web.config by appending a ReturnUrl query string parameter pointing to the protected resource. 
So if for example you configured ~/Account/LogOn to be your logon url, and the anonymous user attempts to hit the ~/Foo/Bar protected resource he will be redirected to ~/Account/LogOn?ReturnUrl=%2FFoo%2FBar. 
Then he will be presented with a login page where he will input his credentials and submit the form to the [HttpPost] LogOn action on the Account controller. The credentials will be validated and if valid, a new forms authentication cookie will be generated and the user redirected to the initially requested protected resource. 
Here's the respective code from the LogOn action: 
[HttpPost]
public ActionResult LogOn(LogOnModel model, string returnUrl)
{
    if (ModelState.IsValid)
    {
        if (Membership.ValidateUser(model.UserName, model.Password))
        {
            FormsAuthentication.SetAuthCookie(model.UserName, model.RememberMe);
            if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1 && returnUrl.StartsWith("/")
                && !returnUrl.StartsWith("//") && !returnUrl.StartsWith("/\\"))
            {
                return Redirect(returnUrl);
            }
            else
            {
                return RedirectToAction("Index", "Home");
            }
        }
        else
        {
            ModelState.AddModelError("", "The user name or password provided is incorrect.");
        }
    }

    // If we got this far, something failed, redisplay form
    return View(model);
}
 
Notice how the user is redirected either to the default Home/Index or to the returnUrl parameter upon successful authentication. 
Now of course all this story that I told here is true for the default ASP.NET MVC template created by Visual Studio. If for some reason you have modified this template this might explain the behavior you are observing.  
In any case the thing to remember from my answer is that if you are using Forms Authentication, the module will pass as ReturnUrl query string parameter the initially requested protected resource to the configured logon page. So it's up to you to redirect the user to this page upon successful authentication.

角度评论指令 - 目的/意图/最佳实践(Angular Comment Directive - Purpose / Intent / Best Practice)

最满意答案

相关问答

AuthSub会话令牌永不过期;(AuthSub session token never expires; security problem?)[2022-02-13]

MVC会话过期 - 继续离开(MVC session expires - continue where left)[2023-07-29]

会话在mvc4中过期后无法返回登录页面(Unable to return to login page after session expires in mvc4)[2022-04-29]

Rails 4：会话值从不“过期”或在浏览器关闭时死亡(Rails 4: session value never “expires” or dies when browser closes)[2022-11-07]

如果会话在mvc中到期，则从ActionFilter显示弹出窗口(Show popup from ActionFilter if session expires in mvc)[2022-08-30]

会话在Spring MVC中过期(Session expired in spring MVC)[2022-03-12]

asp.net mvc会话经常在托管环境中过期(asp.net mvc session expires often at hosting environment)[2021-12-30]

处理AJAX请求，如果会话已过期(Handling AJAX requests if a session has expired)[2023-08-31]

会话超时警告对话框mvc(Session Timeout Warning dialogs mvc)[2023-04-13]

除非用户单击注销，否则永远不会像在stackoverflow.com上那样过期的会话(Session that never expires like on stackoverflow.com, unless the user clicks logout)[2022-03-16]

相关文章

最新问答