asp.net mvc - The "Back" button and the anti-forgery token -



asp.net mvc - The "Back" button and the anti-forgery token -

i'm getting runtime error related the anti-forgery attribute.

perform next steps:

create mvc web application , start register joe@acme.org sign out register jane@acme.org sign out login joe@acme.org hit button login jane@acme.org

error: the provided anti-forgery token meant different claims-based user current user.

what can done prevent error occurring?

this 1 way of ignoring error , returning user login screen. it's example.

create new class called handleantiforgerytokenerrorattribute inherits handleerrorattribute. override onexception method.

public class handleantiforgerytokenerrorattribute : handleerrorattribute { public override void onexception(exceptioncontext filtercontext) { filtercontext.exceptionhandled = true; filtercontext.result = new redirecttorouteresult( new routevaluedictionary(new { action = "login", controller = "account" })); } }

go filterconfig class , register attribute global filter.

public class filterconfig { public static void registerglobalfilters(globalfiltercollection filters) { filters.add(new handleerrorattribute()); filters.add(new handleantiforgerytokenerrorattribute() { exceptiontype = typeof(httpantiforgeryexception) } ); } }

asp.net-mvc razor

Comments

Post a Comment

Popular posts from this blog

php - Android app custom user registration and login with cookie using facebook sdk -

php - Android app custom user registration and login with cookie using facebook sdk - i developing android application in users need register , log in using facebook. approximately, flow. open app first time, authenticate facebook, data, send info server create them business relationship in application, start session new business relationship in server, cookie perform later interactions. so far good. what need know wich info have send server, can able identify users when log in seccond time. because need start session in server , send cookie android app farther interactions. i'm using php server side language. i thinking getting getaccesstoken() in android facebook sdk, pass server on business relationship creation , storing in android app. but can't manage how login users on sec time utilize app. any suggestions ? in advance ! to uniquely identify user within app, should create request /me , user's id. guaranteed unique , remain con...
Read more

ruby on rails - Devise Logout Error in RoR -

ruby on rails - Devise Logout Error in RoR - while using devise in ror, encountering unusual error when trying log out url different root url. displays me : actioncontroller::invalidauthenticitytoken in devise::sessionscontroller#destroy" for illustration if rooting path after log in '/structure', , seek log out '/general' error, while logging out '/structure' fine. any help highly appreciated. ruby-on-rails ruby devise
Read more

c# - Create a Notification Object (Email or Page) At Run Time -- Dependency Injection or Factory -

c# - Create a Notification Object (Email or Page) At Run Time -- Dependency Injection or Factory - i have code emails me notification when happens. trying add together page , also remove dependency on email. for reference; have name of notification want send stored string in database. @ runtime have list of people , string representation of want receive. i thought dependency injection ninject, kernel bindings got big , seemed hacking together. then thought simple factory, activator.createinstance(email/page) inotifcation, don't know how handle differing constructor parameters (unless utilize common, complex property, employee, has info need). so far have this: public interface inotification { void sendmessage(); } public class email: inotification { private readonly string _toemailaddress; private string body { { homecoming "email"; } } private static string smtphost { ...
Read more