Add Anti-forgery token support to SPA Module

Description

Card

As a developer, I want to be able to use Anti-forgery tokens with my SPA module. An AntiForgeryToken token should be created which developers can include in their HTML. The token should be [AntiForgeryToken]

The developer should be able to decorate their web service methods with the appropriate [ValidateAntiForgeryToken] attribute and have it correctly validate the token generated in the HTML.

Conversation

Confirmation

QA Test Plan

None

Activity

Show:

Charles NurseMarch 30, 2015 at 9:12 PM

Created Pull Request - https://github.com/dnnsoftware/Dnn.Platform/pull/421

Charles NurseMarch 30, 2015 at 8:52 PM

TokenReplace does not support a Token without any properties.

i.e. a Token must include the colon separator - so I have implemented this as [AntiForgeryToken: true] - actually any value can be placed after the colon.

Complete

Details
Assignee
Unassigned
Reporter
Joe Brinkman
Story Size
S
Documentation Required
No
Story Points
2
Sprint
None
Fix versions
Platform 8.0.0
Priority
High
Parent
DNN-6646 Html Based Modules

Created March 26, 2015 at 6:56 PM

Updated August 12, 2015 at 12:57 AM

Resolved April 1, 2015 at 4:18 PM

Add Anti-forgery token support to SPA Module

Description

Card

Conversation

Confirmation

QA Test Plan

Activity

Charles NurseMarch 30, 2015 at 9:12 PM

Charles NurseMarch 30, 2015 at 8:52 PM

DetailsAssigneeUnassignedUnassignedReporterJoe BrinkmanJoe BrinkmanStory SizeSDocumentation RequiredNoStory Points2SprintNone+1Fix versionsPlatform 8.0.0PriorityHighParentDNN-6646 Html Based Modules

Details

Assignee

Reporter

Story Size

Documentation Required

Story Points

Sprint

Fix versions

Priority

Parent

Details
Assignee
Unassigned
Reporter
Joe Brinkman
Story Size
S
Documentation Required
No
Story Points
2
Sprint
None
Fix versions
Platform 8.0.0
Priority
High
Parent
DNN-6646 Html Based Modules