发表新帖
发表新帖

The required anti-forgery form field “__RequestVerificationToken” is not present Error in user Registration

后端 未结
关注
19 1213
旧巷少年郎
旧巷少年郎 2020-11-29 22:12

I am using Membership.create user function, then the following error is occurring,

The required anti-forgery form field \"__RequestVerifi

相关标签:
19条回答
  • 野性不改
    2020-11-29 22:19

    Sometimes you are writing a form action method with a result list. In this case, you cannot work with one action method. So you have to have two action methods with the same name. One with [HttpGet] and another with [HttpPost] attribute.

    In your [HttpPost] action method, set [ValidateAntiForgeryToken] attribute and also put @Html.AntiForgeryToken() in your html form.

    0 讨论(0)
  • 孤街浪徒
    2020-11-29 22:20

    In my EPiServer solution on several controllers there was a ContentOutputCache attribute on the Index action which accepted HttpGet. Each view for those actions contained a form which was posting to a HttpPost action to the same controller or to a different one. As soon as I removed that attribute from all of those Index actions problem was gone.

    0 讨论(0)
  • 刺人心
    2020-11-29 22:21

    In my case, I had this javascript on the form submit:

    $('form').submit(function () {
    $('input').prop('disabled', true);
});

    This was removing the hidden RequestVerificationToken from the form being submitted. I changed that to:

    $('form').submit(function () {
    $('input[type=submit]').prop('disabled', true);
    $('input[type=text]').prop('readonly', true);
    $('input[type=password]').prop('readonly', true);
});

    ... and it worked fine.

    0 讨论(0)
  • 遇见更好的自我
    2020-11-29 22:22

    Another possibility for those of us uploading files as part of the request. If the content length exceeds <httpRuntime maxRequestLength="size in kilo bytes" /> and you're using request verification tokens, the browser displays the 'The required anti-forgery form field "__RequestVerificationToken" is not present' message instead of the request length exceeded message.

    Setting maxRequestLength to a value large enough to cater for the request cures the immediate issue - though I'll admit it's not a proper solution (we want the user to know the true problem of file size, not that of request verification tokens missing).

    0 讨论(0)
  • 悲哀的现实
    2020-11-29 22:22

    If anyone experiences the error for the same reason why I experience it, here's my solution:

    if you had Html.AntiForgeryToken();

    change it to @Html.AntiForgeryToken()

    0 讨论(0)
  • 梦毁少年i
    2020-11-29 22:23

    All the other answers in here are also valid, but if none of them solve the issue it is also worth checking that the actual headers are being passed to the server.

    For example, in a load balanced environment behind nginx, the default configuration is to strip out the __RequestVerificationToken header before passing the request on to the server, see: simple nginx reverse proxy seems to strip some headers

    0 讨论(0)
 看不清?
提交回复
热议问题