How do I solve an AntiForgeryToken exception that occurs after an iisreset in my ASP.Net MVC app?

by

If your MachineKey is set to AutoGenerate, then your verification tokens, etc won’t survive an application restart – ASP.NET will generate a new key when it starts up, and then won’t be able to decrypt the tokens correctly.

If you are seeing this a lot, I’d suggest:

  1. Configuring a static MachineKey (you should be able to do this at the application level), see “How to: Configure a MachineKey” for more information
  2. Try not to perform IIS Resets when the site is being used1

1 The best way to do this is by having a loadbalanced application, which will require you to set a static MachineKey. Another option is to take the site down by placing a file named app_offline.htm in the root of the site, which will take the site offline and display your message – at least the users will expect things to go wrong.

More Related Contents:

  1. How can I get my webapp’s base URL in ASP.NET MVC?
  2. New asp.net charting controls – will they work with MVC (eventually)?
  3. ASP.NET MVC – Getting QueryString values
  4. How to create a CheckBoxListFor extension method in ASP.NET MVC?
  5. Using scripts in a master page with ASP.NET MVC
  6. How to send an email with attachments using SmtpClient.SendAsync?
  7. ASP.Net MVC Redirect To A Different View
  8. Integrate existing ASP.NET MVC application with Orchard CMS
  9. WCF – How to Increase Message Size Quota
  10. Logging best practices [closed]
  11. Windows update caused MVC3 and MVC4 stop working
  12. force browsers to get latest js and css files in asp.net application
  13. Parser Error Message: Could not load type ‘TestMvcApplication.MvcApplication’
  14. How to change default view location scheme in ASP.NET MVC?
  15. Global ASAX – get the server name
  16. Create virtual directory on same azure web app
  17. Cannot attach the file *.mdf as database
  18. Remote machines cannot connect to Visual Studio web server
  19. Difference between Html.RenderAction and Html.Action
  20. Connection string using Windows Authentication
  21. Unable to convert MySQL date/time value to System.DateTime
  22. .NET MVC Call method on different controller
  23. .NET – Get protocol, host, and port
  24. Can you use the asp.net membership provider in a windows application?
  25. Web API Queryable – how to apply AutoMapper?
  26. How do I store a dictionary object in my web.config file?
  27. ASP.NET strange compilation error
  28. What’s the different between ASP.NET AJAX pageLoad() and JavaScript window.onload?
  29. How to Convert Row to Column in Linq and SQL
  30. Managing complex Web.Config files between deployment environments

Leave a Comment