Problems implementing ValidatingAntiForgeryToken attribute for Web API with MVC 4 RC

by

You could try reading from the headers:

var headers = actionContext.Request.Headers;
var cookie = headers
    .GetCookies()
    .Select(c => c[AntiForgeryConfig.CookieName])
    .FirstOrDefault();
var rvt = headers.GetValues("__RequestVerificationToken").FirstOrDefault();
AntiForgery.Validate(cookie != null ? cookie.Value : null, rvt);

Note: GetCookies is an extension method that exists in the class HttpRequestHeadersExtensions which is part of System.Net.Http.Formatting.dll. It will most likely exist in C:\Program Files (x86)\Microsoft ASP.NET\ASP.NET MVC 4\Assemblies\System.Net.Http.Formatting.dll

More Related Contents:

  1. How to add global ASP.Net Web Api Filters?
  2. How to create ASP.NET Web API Url?
  3. WebApi Json.NET custom date handling
  4. Submit same Partial View called multiple times data to controller?
  5. JSONP with ASP.NET Web API
  6. How to add Web API to an existing ASP.NET MVC 4 Web Application project?
  7. Simple post to Web Api
  8. Logging request/response messages when using HttpClient
  9. Error :Request header field Content-Type is not allowed by Access-Control-Allow-Headers
  10. Web API and ValidateAntiForgeryToken
  11. WebAPI StreamContent vs PushStreamContent
  12. Role based authentication in the new MVC 4 Internet template using simplemembership
  13. unobtrusive validation not working with dynamic content
  14. How to put conditional Required Attribute into class property to work with WEB API?
  15. Mixing Web Api and ASP.Net MVC Pages in One Project
  16. Return HTML from ASP.NET Web API
  17. How to return raw string with ApiController?
  18. Using WebSockets with ASP.NET Web API
  19. ASP.NET MVC 4 custom Authorize attribute – How to redirect unauthorized users to error page? [duplicate]
  20. Accessing post or get parameters in custom authorization MVC4 Web Api
  21. MVC 4 Beta side by side installation error
  22. MVC 4 date culture issue?
  23. How to create two footer rows in jqgrid
  24. where should i place the js script files in a mvc application so jquery works well?
  25. How to add and get Header values in WebApi
  26. What effect does the new precompile during publishing option have on MVC4 applications?
  27. Web API in MVC solution in separate project
  28. ASP.NET MVC 4 Editor Template for basic types
  29. Routing in Asp.net Mvc 4 and Web Api
  30. All requests to ASP.NET Web API return 404 error

Leave a Comment