Handle invalid forgery token error

[gimpesi]

Hello everyone,
is there a way to handle invalid forgery token error?

A valid antiforgery token was not provided with the request. Add an antiforgery token, or disable antiforgery validation
for this endpoint.

Like a redirect or something else?

[engineering87]

Hello @gimpesi ,
You can try to catch AntiforgeryValidationException globally and redirect or show a friendly page.
For example:

app.UseExceptionHandler(appError =>
{
    appError.Run(context =>
    {
        var ex = context.Features.Get<IExceptionHandlerPathFeature>()?.Error;
        if (ex is AntiforgeryValidationException)
        {
            context.Response.Redirect("/Error/InvalidAntiforgeryToken");
            return Task.CompletedTask;
        }
        return Task.CompletedTask;
    });
});

Or, for specific actions, decorate them with [IgnoreAntiforgeryToken] if you don’t need validation.