antiforgerytoken Questions
2
Solved
I am playing around with ASP vnext and AngularJS. I have set up a Web API, am using some controllers and am using angular to do some web-magic.
I have followed most of this guide to get my project...
Mimeograph asked 30/3, 2015 at 18:48
2
Solved
We recently updated our solution to MVC 2, and this has updated the way that the AntiForgeryToken works. Unfortunately this does not fit with our AJAX framework any more.
The problem is that MVC ...
Prase asked 23/4, 2010 at 10:24
1
I've got a public MVC 5 web-site, using the anti-forgery token. Every day a large number of errors are logged in the form of "The anti-forgery cookie token and form field token do not match.", and ...
Ivers asked 13/11, 2014 at 21:49
1
Some point after I upgraded from Rails 3.2 to Rails 4.1, I started getting the following errors:
ActionController::InvalidCrossOriginRequest: Security warning: an embedded tag on another site re...
Alliber asked 28/5, 2014 at 2:40
1
Solved
When a user is Logged in, and goes to Login Page while so. If he tries to login again you get Anti forgery Error.
The anti-forgery token could not be decrypted. If this application is hosted by ...
Buskined asked 15/9, 2014 at 11:50
1
Solved
i came to know : Under the covers, the MVC AntiForgeryToken attribute uses the machinekey for encryption. If you don't specify a machinekey in the web.config , one is automatically generated for yo...
Bumbling asked 12/8, 2014 at 9:13
1
I've implemented anti-forgery protection using the ValidateAntiForgeryTokenAttribute in MVC 5. It is working fine, but in the future we may move to more of a "web farm" approach to hosting. If I ru...
Mcphee asked 23/7, 2014 at 20:49
3
Solved
Im using MVC 3 and everything is setup correctly from what I can see.
A user Authenticates submits a form with the AntiForgery Token and everything works fine.
That is unless the user has left th...
Conversationalist asked 21/12, 2011 at 13:58
1
Solved
Does the method System.Web.Helpers.AntiForgery.Validate();
perform exactly the same function as the [ValidateAntiForgeryToken] decoration?
I'm thinking of changing my log out method too:
[HttpPo...
Indevout asked 18/3, 2014 at 12:47
1
Solved
My question is more driven by what is the proper approach when dealing with partial views. Is there a token for each partial view, or the container as a whole?
Currently our form contains divs fo...
Hath asked 13/3, 2014 at 13:56
2
Solved
I want to use AntiForgeryTokens on every HttpPost Action using an ActionFilter that is in a controller named ControllerBase that every other controller inherits from.
I want to do this by creating...
Ticknor asked 2/8, 2012 at 15:47
2
Solved
I'm in trying to protect from CSRF and have two scenarious:
Doing POST from within another site and it fails when I enable AntiForgeryToken
I have tried from my "malicious" Javascript (running on...
Porky asked 31/1, 2011 at 15:43
3
Solved
In my MVC 3 project i have a login page that uses the anti-forgery logic built into MVC 3.
On Firefox & Opera it works just fine, but on IE I get this:
A required anti-forgery token was not s...
Poser asked 22/12, 2011 at 13:11
1
Solved
Case: I have an MVC5 application (basically the MVC5 template with a scaffolded view) with the Google authentication method enabled. The application has been configured to accept email as user name...
Glazed asked 16/12, 2013 at 15:48
3
Solved
We'd been getting "A required anti-forgery token was not supplied or was invalid." errors, and on some further investigation, I've managed to recreate the problem in its simplest form - i'm either ...
Monotheism asked 27/10, 2010 at 9:18
2
Solved
we have a specific issue with the anti forgery token on the login page. If the user logs in with only one active window everything works great however if the user opens the login page in two differ...
Cochin asked 26/3, 2012 at 23:4
1
Solved
I am currently working on an ASP.NET MVC project and came upon an error that seemed peculiar.
In the ASP.NET MVC Templates forms always get an AntiForgeryToken (thus leading me to believe that thi...
Moncear asked 23/7, 2013 at 8:29
3
Solved
I have a problem with the anti CRSF MVC mechanism. The cookie and the form input returned does not match. I'm getting an error every single time, only in one specific page. In the rest of the appli...
Jailhouse asked 14/10, 2011 at 11:31
2
i have the following ajax.actionlink which calls a Delete action method for deleting an object:-
@if (!item.IsAlreadyAssigned(item.LabTestID))
{
string i = "Are You sure You want to delete (" ...
Abshire asked 23/4, 2012 at 0:23
1
Solved
We're writing an iOS mobile app in objective-c that makes posts to our ASP.NET MVC server app. On iPhone, the HTTP stack (and cookies etc) appear to be shared with Safari. This leaves us open to XS...
Somersault asked 24/4, 2013 at 12:26
5
We have an ASP.NET MVC 2 (.NET 4) application running on Windows Azure (latest 2.x OS version) with two web role instances.
We use the anti-forgery token supplied by MVC for all POST requests, and...
Nostradamus asked 29/3, 2012 at 9:44
1
In a web page we provide a hyperlink (GET) that the User may click on to authenticate:
@Html.ActionLink("Please Login", "MyMethod", "MyController")
This maps to the following controller method w...
Won asked 1/10, 2012 at 18:32
3
Solved
I'm trying to understand how I will be able to craft an API using ASP.NET Web API which will be protected from CSRF, while still being accessible from non-web environments (e.g. native mobile appli...
Texas asked 2/4, 2013 at 3:32
2
Solved
Using ASP.net MVC v2.0, Any way to change the name of the __RequestVerificationToken cookie? In an effort to conceal our underlying technology stack, I’d like to rename the cookie to something that...
Howsoever asked 6/8, 2010 at 2:36
2
Solved
I have a form which the user can post without loging in. If however his email is recognized a password is required. The password form is validated over Ajax and if successfull the main form is subm...
Prima asked 1/2, 2012 at 13:44
© 2022 - 2024 — McMap. All rights reserved.