Skip to content

Commit 59ed84e

Browse files
Rick-AndersonRick-Anderson
authored
Update anti-request-forgery.md
1 parent 9b1941b commit 59ed84e

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

aspnetcore/security/anti-request-forgery.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -159,7 +159,7 @@ Calling <xref:Microsoft.Extensions.DependencyInjection.MvcServiceCollectionExten
159159

160160
## Multiple browser tabs and the Synchronizer Token Pattern
161161

162-
With the Synchronizer Token Pattern, only the most recently loaded page contains a valid antiforgery token. Using multiple tabs can be problematic. For example, if a user opens multiple tabs:
162+
With the Synchronizer Token Pattern, only the most recently loaded page is guaranteed to contain a valid antiforgery token. ***Using multiple tabs can be problematic***. For example, if a user opens multiple tabs:
163163

164164
* Only the most recently loaded tab contains a valid antiforgery token.
165165
* Requests made from previously loaded tabs fail with an error: `Antiforgery token validation failed. The antiforgery cookie token and request token do not match`

0 commit comments

Comments
 (0)