How to set Secure Flag for.AspNetCore.Antiforgery?

Question

I am using .net core 3.1 on my project. I set Secure flag true for every cookie but I can not set Secure flag for AspNetCore.Antiforgery.

services.AddControllers(options =>
{
    options.Filters.Add(new AutoValidateAntiforgeryTokenAttribute());
});

Yinqiu · Accepted Answer

You can set secure flag for AspNetCore.Antiforgery like following:

 services.AddAntiforgery(options =>
        {
            options.Cookie.SecurePolicy =CookieSecurePolicy.Always;
        });

Remember to clear the previous cookies first.

Result:

Answers (1)