public void OnAuthorization(AuthorizationFilterContext context) { var accessToken = context.HttpContext.Request.Headers["Authorization"].ToString(); if (!string.IsNullOrEmpty(accessToken)) { var token = accessToken.Replace("Bearer ", ""); if (!UserTokenMapping.ExistToken(token)) { context.HttpContext.Response.StatusCode = 401; return; } } ; }