How can I supply an AntiForgeryToken when posting JSON data using $.ajax?

by

You don’t need the ValidationHttpRequestWrapper solution since MVC 4. According to this link.

  1. Put the token in the headers.
  2. Create a filter.
  3. Put the attribute on your method.

Here is my solution:

var token = $('input[name="__RequestVerificationToken"]').val();
var headers = {};
headers['__RequestVerificationToken'] = token;
$.ajax({
    type: 'POST',
    url: '/MyTestMethod',
    contentType: 'application/json; charset=utf-8',
    headers: headers,
    data: JSON.stringify({
        Test: 'test'
    }),
    dataType: "json",
    success: function () {},
    error: function (xhr) {}
});


[AttributeUsage(AttributeTargets.Method | AttributeTargets.Class, AllowMultiple = false, Inherited = true)]
public class ValidateJsonAntiForgeryTokenAttribute : FilterAttribute, IAuthorizationFilter
{
    public void OnAuthorization(AuthorizationContext filterContext)
    {
        if (filterContext == null)
        {
            throw new ArgumentNullException("filterContext");
        }

        var httpContext = filterContext.HttpContext;
        var cookie = httpContext.Request.Cookies[AntiForgeryConfig.CookieName];
        AntiForgery.Validate(cookie != null ? cookie.Value : null, httpContext.Request.Headers["__RequestVerificationToken"]);
    }
}


[HttpPost]
[AllowAnonymous]
[ValidateJsonAntiForgeryToken]
public async Task<JsonResult> MyTestMethod(string Test)
{
    return Json(true);
}

More Related Contents:

  1. jQuery Ajax calls and the Html.AntiForgeryToken()
  2. MVC ajax json post to controller action method
  3. ASP.NET MVC controller actions that return JSON or partial html
  4. Send JSON data via POST (ajax) and receive json response from Controller (MVC)
  5. How do I write unencoded Json to my View using Razor?
  6. ASP.NET MVC How to pass JSON object from View to Controller as Parameter
  7. In MVC, how do I return a string result?
  8. Posting JSON Data to ASP.NET MVC
  9. Where can I find a list of escape characters required for my JSON ajax return type?
  10. Authorize attribute and jquery AJAX in asp.net MVC
  11. Web API and ValidateAntiForgeryToken
  12. How can I return camelCase JSON serialized by JSON.NET from ASP.NET MVC controller methods?
  13. Return a JSON string explicitly from Asp.net WEBAPI?
  14. MVC: How to Return a String as JSON
  15. Json and Circular Reference Exception
  16. Troubleshooting anti-forgery token problems
  17. ASP.NET MVC and Ajax, concurrent requests?
  18. ASP.NET MVC: Controlling serialization of property names with JsonResult
  19. MVC controller : get JSON object from HTTP body?
  20. How to return Json object from MVC controller to view
  21. Converting flattened hierarchical data from SQL Server into a structured JSON object with C#/Linq
  22. Force lowercase property names from Json() in ASP.NET MVC
  23. What ‘sensitive information’ could be disclosed when setting JsonRequestBehavior to AllowGet
  24. Populate Select box options on click with Javascript/Jquery with Json data
  25. AJAX Post of JavaScript String Array to JsonResult as List Always Returns Null?
  26. How can I RedirectToAction within $.ajax callback?
  27. ASP.NET MVC rendering partial view with jQuery ajax
  28. ASP.NET MVC – Combine Json result with ViewResult
  29. deploying AntiforgeryToken Error
  30. Binding HttpPostedFileBase using Ajax.BeginForm

Leave a Comment