ASP.NET (WebForm) 防範 CSRF攻擊
ASP.NET (Web Form) 防範 CSRF攻擊
關鍵字 AntiForgery Token / cross-site request forgery (CSRF攻擊)
下面的影片，是寫在 Page_Init事件中。
（簡體中文）


國際

職場產業

創作

<h3 class="draft-block draft--h3"><a href="https://mis2000lab.pixnet.net/blog/post/35596081-asp.net-%28webform%29-%e9%98%b2%e7%af%84-csrf%e6%94%bb%e6%93%8a" target="_blank" class="draft--a">ASP.NET (WebForm) 防範&nbsp;CSRF攻擊</a></h3>
<div class="draft-block draft--p left">ASP.NET (Web Form) 防範 CSRF攻擊</div>
<div class="draft-block draft--p left">關鍵字 AntiForgery Token / cross-site request forgery (CSRF攻擊)</div>
<div class="draft-block draft--p left">從 NuGet安裝「Microsoft.AspNet.WebPages」套件</div>
<div class="draft-block draft--p left"><a href="https://www.nuget.org/packages/Microsoft.AspNet.WebPages/" target="_blank" class="draft--a"><span style="font-weight: bold; ">Microsoft.AspNet.WebPages 3.2.7</span><br><span style="font-style: italic; ">This package contains core runtime assemblies shared between ASP.NET MVC and ASP.NET Web Pages.</span>www.nuget.org</a></div>
<div class="draft-block draft--p left">使用AntiForgery.GetHtml() 來生成一個隱藏的token</div>
<div class="draft-block draft--p left">下面的影片，是寫在 Page_Init事件中。</div>
<div class="draft-block draft--p left">Youtube影片 — <a href="https://www.youtube.com/watch?v=-DswQCwVqxk" target="_blank" class="draft--a">https://www.youtube.com/watch?v=-DswQCwVqxk</a></div>
<div class="draft-block draft--p left"></div>
<div class="draft-block draft--p left">相關文章 — ASP.NET WebForm中異步請求防止XSRF攻擊的方法</div>
<div class="draft-block draft--p left"><a href="https://read01.com/zh-tw/D5kj44.html" target="_blank" class="draft--a">https://read01.com/zh-tw/D5kj44.html</a></div>
<div class="draft-block draft--p left">其他作法 — 採用 <a href="https://docs.microsoft.com/zh-tw/dotnet/api/system.web.helpers?view=aspnet-webpages-3.2" target="_blank" class="draft--a">System.Web.Helpers</a></div>
<div class="draft-block draft--p left"><a href="https://stackoverflow.com/questions/29939566/preventing-cross-site-request-forgery-csrf-attacks-in-asp-net-web-forms#" target="_blank" class="draft--a">https://stackoverflow.com/questions/29939566/preventing-cross-site-request-forgery-csrf-attacks-in-asp-net-web-forms#</a></div>
<div class="draft-block draft--p left">（簡體中文）</div>
<div class="draft-block draft--p left"><a href="https://blog.csdn.net/feelig/article/details/44236643" target="_blank" class="draft--a">https://blog.csdn.net/feelig/article/details/44236643</a></div>
<div class="draft-block draft--p left"><a href="https://www.cnblogs.com/luminji/archive/2012/06/08/2511384.html" target="_blank" class="draft--a">https://www.cnblogs.com/luminji/archive/2012/06/08/2511384.html</a></div>
<h4>文章標籤</h4>
<div class="draft-block draft--p left"><a href="https://www.pixnet.net/tags/ASP.NET?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">ASP.NET</a> <a href="https://www.pixnet.net/tags/WebForm?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">WebForm</a> <a href="https://www.pixnet.net/tags/CSRF?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">CSRF</a> <a href="https://www.pixnet.net/tags/Token?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">Token</a> <a href="https://www.pixnet.net/tags/AntiForgery?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">AntiForgery</a> <a href="https://www.pixnet.net/tags/antiforgerytoken?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">antiforgerytoken</a> <a href="https://www.pixnet.net/tags/Web+Form?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">Web Form</a> <a href="https://www.pixnet.net/tags/VS2019?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">VS2019</a> <a href="https://www.pixnet.net/tags/VisualStudio?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" target="_blank" class="draft--a">VisualStudio</a></div>

<h3><a href="https://mis2000lab.pixnet.net/blog/post/35596081-asp.net-%28webform%29-%e9%98%b2%e7%af%84-csrf%e6%94%bb%e6%93%8a" rel="noopener" target="_blank">ASP.NET (WebForm) 防範&nbsp;CSRF攻擊</a></h3>
<p>ASP.NET (Web Form) 防範 CSRF攻擊</p>
<p>關鍵字 AntiForgery Token / cross-site request forgery (CSRF攻擊)</p>
<p>從 NuGet安裝「Microsoft.AspNet.WebPages」套件</p>
<p><a href="https://www.nuget.org/packages/Microsoft.AspNet.WebPages/" title="https://www.nuget.org/packages/Microsoft.AspNet.WebPages/"><strong>Microsoft.AspNet.WebPages 3.2.7</strong><br>
<em>This package contains core runtime assemblies shared between ASP.NET MVC and ASP.NET Web Pages.</em>www.nuget.org</a></p>
<p>使用AntiForgery.GetHtml() 來生成一個隱藏的token</p>
<p>下面的影片，是寫在 Page_Init事件中。</p>
<p>Youtube影片 — <a href="https://www.youtube.com/watch?v=-DswQCwVqxk" rel="noopener" target="_blank">https://www.youtube.com/watch?v=-DswQCwVqxk</a></p>
<p><br></p>
<p>相關文章 — ASP.NET WebForm中異步請求防止XSRF攻擊的方法</p>
<p><a href="https://read01.com/zh-tw/D5kj44.html" rel="noopener" target="_blank">https://read01.com/zh-tw/D5kj44.html</a></p>
<p>其他作法 — 採用 <a href="https://docs.microsoft.com/zh-tw/dotnet/api/system.web.helpers?view=aspnet-webpages-3.2" rel="noopener" target="_blank">System.Web.Helpers</a></p>
<p><a href="https://stackoverflow.com/questions/29939566/preventing-cross-site-request-forgery-csrf-attacks-in-asp-net-web-forms#" rel="noopener" target="_blank">https://stackoverflow.com/questions/29939566/preventing-cross-site-request-forgery-csrf-attacks-in-asp-net-web-forms#</a></p>
<p>（簡體中文）</p>
<p><a href="https://blog.csdn.net/feelig/article/details/44236643" rel="noopener" target="_blank">https://blog.csdn.net/feelig/article/details/44236643</a></p>
<p><a href="https://www.cnblogs.com/luminji/archive/2012/06/08/2511384.html" rel="noopener" target="_blank">https://www.cnblogs.com/luminji/archive/2012/06/08/2511384.html</a></p>
<h4>文章標籤</h4>
<p><a href="https://www.pixnet.net/tags/ASP.NET?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">ASP.NET</a> <a href="https://www.pixnet.net/tags/WebForm?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">WebForm</a> <a href="https://www.pixnet.net/tags/CSRF?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">CSRF</a> <a href="https://www.pixnet.net/tags/Token?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">Token</a> <a href="https://www.pixnet.net/tags/AntiForgery?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">AntiForgery</a> <a href="https://www.pixnet.net/tags/antiforgerytoken?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">antiforgerytoken</a> <a href="https://www.pixnet.net/tags/Web+Form?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">Web Form</a> <a href="https://www.pixnet.net/tags/VS2019?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">VS2019</a> <a href="https://www.pixnet.net/tags/VisualStudio?utm_source=PIXNET&amp;utm_medium=Blog_article_tag_rule0106" rel="noopener" target="_blank">VisualStudio</a></p>

關鍵字 AntiForgery Token / cross-site request forgery (CSRF攻擊)

從 NuGet安裝「Microsoft.AspNet.WebPages」套件

Microsoft.AspNet.WebPages 3.2.7
This package contains core runtime assemblies shared between ASP.NET MVC and ASP.NET Web Pages.www.nuget.org

使用AntiForgery.GetHtml() 來生成一個隱藏的token

下面的影片，是寫在 Page_Init事件中。

Youtube影片 — https://www.youtube.com/watch?v=-DswQCwVqxk

相關文章 — ASP.NET WebForm中異步請求防止XSRF攻擊的方法

其他作法 — 採用 System.Web.Helpers

https://stackoverflow.com/questions/29939566/preventing-cross-site-request-forgery-csrf-attacks-in-asp-net-web-forms#

https://blog.csdn.net/feelig/article/details/44236643

https://www.cnblogs.com/luminji/archive/2012/06/08/2511384.html

ASP.NET WebForm CSRF Token AntiForgery antiforgerytoken Web Form VS2019 VisualStudio