AntiForgeryConfig Class

Provides programmatic configuration for the anti-forgery token system.

Inheritance Hierarchy


Namespace:  System.Web.Helpers
Assembly:  System.Web.WebPages (in System.Web.WebPages.dll)


Public NotInheritable Class AntiForgeryConfig
public static class AntiForgeryConfig
public ref class AntiForgeryConfig abstract sealed
type AntiForgeryConfig =  class end
public final class AntiForgeryConfig

The AntiForgeryConfig type exposes the following members.


  Name Description
Public propertyStatic member AdditionalDataProvider Gets a data provider that can provide additional data to put into all generated tokens and that can validate additional data in incoming tokens.
Public propertyStatic member CookieName Gets or sets the name of the cookie that is used by the anti-forgery system.
Public propertyStatic member RequireSsl Gets or sets a value that indicates whether the anti-forgery cookie requires SSL in order to be returned to the server.
Public propertyStatic member SuppressIdentityHeuristicChecks Gets or sets a value that indicates whether the anti-forgery system should skip checking for conditions that might indicate misuse of the system.
Public propertyStatic member SuppressXFrameOptionsHeader Specifies whether to suppress the generation of X-Frame-Options header which is used to prevent ClickJacking. By default, the X-Frame-Options header is generated with the value SAMEORIGIN. If this setting is 'true', the X-Frame-Options header will not be generated for the response.
Public propertyStatic member UniqueClaimTypeIdentifier If claims-based authorization is in use, gets or sets the claim type from the identity that is used to uniquely identify the user.


Thread Safety

Any public static (Shared in Visual Basic) members of this type are thread safe. Any instance members are not guaranteed to be thread safe.

See Also


System.Web.Helpers Namespace