Skip to content

Commit a8d30c8

Browse files
Rick-AndersonRick-Anderson
authored
Update aspnetcore/security/anti-request-forgery.md
1 parent 59ed84e commit a8d30c8

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

aspnetcore/security/anti-request-forgery.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -159,7 +159,7 @@ Calling <xref:Microsoft.Extensions.DependencyInjection.MvcServiceCollectionExten
159159

160160
## Multiple browser tabs and the Synchronizer Token Pattern
161161

162-
With the Synchronizer Token Pattern, only the most recently loaded page is guaranteed to contain a valid antiforgery token. ***Using multiple tabs can be problematic***. For example, if a user opens multiple tabs:
162+
With the Synchronizer Token Pattern, only the most recently loaded page is guaranteed to contain a valid antiforgery token. Apps that wish to support multiple tabs should test supported browser and log failures. ***Using multiple tabs can be problematic***. For example, if a user opens multiple tabs:
163163

164164
* Only the most recently loaded tab contains a valid antiforgery token.
165165
* Requests made from previously loaded tabs fail with an error: `Antiforgery token validation failed. The antiforgery cookie token and request token do not match`

0 commit comments

Comments
 (0)