Hello!

  • What does the presence of RequestVerificationToken in the http request header?
  • Why do we need __RequestVerificationToken in Cookies?
  • What then does the helper @Html.AntiForgeryToken() give in the view with the attribute of the controller action [ValidateAntiForgeryToken] ?

If you specify the latter, then __RequestVerificationToken appears in the form data. Maybe I was looking badly, but I did not find a normal explanation.

Why do I need so many RequestVerificationToken ?

    0