Prevent Cross-Site Request Forgery In ASP.NET Core

If you worked with ASP.NET MVC applications before, you are probably aware of Cross-site request forgery (CSRF / XSRF) attacks. You might have also used anti-forgery token based approach to prevent them. ASP.NET Core uses a similar approach but there are a few differences that you should be aware of. To that end this article briefly discusses the CSRF attack and ASP.NET Core way to prevent them.

http://www.binaryintellect.net/articles/d5ede370-a1d6-4b1f-9afb-10422bccfa7c.aspx