How do you keep the Antiforgery DOM tokens in sync across multiple browser tabs? Specifically, if user session expires on TabA and then signs back in, TabB DOM antiforgery token seems to no longer match the antiforgery cookie and antiforgery validation errors ensue. How do you prevent this? How does Antiforgery cookie expiration work?
↧