c# .net Adsense ADO.NET Linq Viruses/security asp.net MVC JQuery Angular-js Node-js SEO Java C++ SQL API Networking vb.net .Net Css JavaScript Generics c#.Net entity framework HTML Website host Website Construction Guide HTTP tutorial W3C tutorial Web Services JSON Psychology Ionic framework Angular ReactJS Python Computer Android

c# .net

[solved ]The required anti-forgery cookie "__RequestVerificationToken" is not present.

By: Mohamed Rasik | Feb,18 2016 | CSharp , MVC

We need to add [ValidateAntiForgeryToken] attribute before our action. And also should add @Html.AntiForgeryToken() in our form.

We don't need to use [ValidateAntiForgeryToken] attribute for the GET actions. Use POST request from page which was generated by our application. This attack called cross site request forgeries. When we use It will prevent from forgeries.

Controller:

[HttpPost]
[AllowAnonymous]
[ValidateAntiForgeryToken]
public ActionResult Login(UserLogin userlogin)
{
   <!--/ Check Login -->
}

The View:

@using (@Html.BeginForm("Login", "Admin", FormMethod.Post))
{
     @Html.AntiForgeryToken()
     <input name="..." type="text" />
}