Skip to content

Antiforgery doc updates#26386

Merged
brunolins16 merged 13 commits into
dotnet:mainfrom
brunolins16:brunolins16/issues/26350
Jul 19, 2022
Merged

Antiforgery doc updates#26386
brunolins16 merged 13 commits into
dotnet:mainfrom
brunolins16:brunolins16/issues/26350

Conversation

@brunolins16
Copy link
Copy Markdown
Member

@brunolins16 brunolins16 commented Jul 11, 2022
edited by Rick-Anderson
Loading

@brunolins16 brunolins16 changed the title Brunolins16/issues/26350 Antiforgery doc updates Jul 11, 2022
@brunolins16 brunolins16 requested review from a team and Rick-Anderson July 11, 2022 18:53
@brunolins16 brunolins16 marked this pull request as ready for review July 11, 2022 18:53
@brunolins16
Copy link
Copy Markdown
Member Author

brunolins16 commented Jul 11, 2022

@Rick-Anderson I add the content with :::moniker range=">= aspnetcore-7.0" but the Preview page seems to not be working correctly because it is showing the content for 6.0 as well or maybe I did something wrong.

@brunolins16 brunolins16 requested a review from blowdart July 11, 2022 18:56
Rick-Anderson
Rick-Anderson approved these changes Jul 11, 2022
View reviewed changes
Comment thread aspnetcore/security/anti-request-forgery/samples/6.x/AntiRequestForgerySample/Snippets/Index.js Outdated
@Rick-Anderson
Copy link
Copy Markdown
Contributor

Rick-Anderson commented Jul 11, 2022

@Rick-Anderson I add the content with :::moniker range=">= aspnetcore-7.0" but the Preview page seems to not be working correctly because it is showing the content for 6.0 as well or maybe I did something wrong.

I'll fix it after @blowdart approves the change.

@Rick-Anderson
Copy link
Copy Markdown
Contributor

Rick-Anderson commented Jul 11, 2022

@guardrex are we getting all these warnings by adding 7.0 to be available in production?

@guardrex
Copy link
Copy Markdown
Collaborator

guardrex commented Jul 11, 2022
edited
Loading

It all started AFAICT when they activated the "7.0" in the document version selector. Before that ... merely having moniker ranges with it ... was ok. It was also ok no matter where the 7.0 content appeared (i.e., placed at the bottom of the topic).

BrennanConroy
BrennanConroy reviewed Jul 11, 2022
View reviewed changes
Comment thread aspnetcore/security/anti-request-forgery.md Outdated
Comment thread aspnetcore/security/anti-request-forgery.md Outdated
Comment thread aspnetcore/security/anti-request-forgery.md Outdated
Rick-Anderson
Rick-Anderson suggested changes Jul 11, 2022
View reviewed changes
Comment thread aspnetcore/security/anti-request-forgery.md Outdated
Comment thread aspnetcore/security/anti-request-forgery.md Outdated
Comment thread aspnetcore/security/anti-request-forgery.md Outdated
@brunolins16 @Rick-Anderson @BrennanConroy
Apply suggestions from code review
fabe131 
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
Co-authored-by: Brennan <brecon@microsoft.com>
@brunolins16 brunolins16 mentioned this pull request Jul 11, 2022
Merged
@Rick-Anderson Rick-Anderson reopened this Jul 12, 2022
Rick-Anderson
Rick-Anderson reviewed Jul 12, 2022
View reviewed changes
Comment thread ...tcore/security/anti-request-forgery/samples/6.x/AntiRequestForgerySample/Snippets/Program.cs Outdated
Comment thread ...tcore/security/anti-request-forgery/samples/6.x/AntiRequestForgerySample/Snippets/Program.cs Outdated
Rick-Anderson
Rick-Anderson reviewed Jul 12, 2022
View reviewed changes
Comment thread aspnetcore/security/anti-request-forgery.md Outdated
@Rick-Anderson
Copy link
Copy Markdown
Contributor

Rick-Anderson commented Jul 12, 2022

@brunolins16 I had to do a couple commits trying to fix the build warnings so be sure to pull.

@blowdart
Copy link
Copy Markdown
Contributor

blowdart commented Jul 13, 2022

Note that @pranavkm has left us now, but hi Pranav!

I'm concerned about the writing of a cookie accessible by javascript here, the cookie should flow with requests anyway, and not need to be accessible in script.

Rick-Anderson
Rick-Anderson reviewed Jul 13, 2022
View reviewed changes
Comment thread ...tcore/security/anti-request-forgery/samples/6.x/AntiRequestForgerySample/Snippets/Program.cs Outdated
Comment thread ...tcore/security/anti-request-forgery/samples/6.x/AntiRequestForgerySample/Snippets/Program.cs Outdated
martincostello
martincostello reviewed Jul 19, 2022
View reviewed changes
Comment thread aspnetcore/security/anti-request-forgery/samples/7.x/AntiRequestForgeryMinimalSample/Program.cs Outdated
Comment thread aspnetcore/security/anti-request-forgery/samples/7.x/AntiRequestForgeryMinimalSample/Program.cs Outdated
@brunolins16
Copy link
Copy Markdown
Member Author

brunolins16 commented Jul 19, 2022

@Rick-Anderson do you want to do any additional updates?

@Rick-Anderson
Copy link
Copy Markdown
Contributor

Rick-Anderson commented Jul 19, 2022

@Rick-Anderson do you want to do any additional updates?

It's good to S&M (squash and merge).

@brunolins16 brunolins16 merged commit 5ca9a8f into dotnet:main Jul 19, 2022
@brunolins16 brunolins16 deleted the brunolins16/issues/26350 branch July 19, 2022 18:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@BrennanConroy BrennanConroy BrennanConroy left review comments

@blowdart blowdart blowdart approved these changes

+3 more reviewers

@pranavkm pranavkm pranavkm left review comments

@martincostello martincostello martincostello left review comments

@Rick-Anderson Rick-Anderson Rick-Anderson approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Adding example of AntiForgery scenarios with standards Web APIs

7 participants

@brunolins16 @Rick-Anderson @guardrex @blowdart @pranavkm @martincostello @BrennanConroy