Tracking down action methods that need ValidateAntiForgeryToken using Structural Search and Replace

added by DotNetKicks
1/10/2019 1:23:28 PM

1 Kicks, 404 Views

As discussed in the previous post, we all know it is important to perform validations to prevent a Cross-Site Request Forgery (CSRF) attack against our application. Imagine inheriting a code base that has zero measures implemented? How would you find which action methods need a [ValidateAntiForgeryToken]?