All ASP.NET MVC Forms Need To Include Html.AntiForgeryToken() For Security


Having recently been implementing many new form pages in ASP.NET MVC, I’ve found myself over and over again adding the following two things to every form. After Html.BeginForm() I Put @Html.AntiForgeryToken() Add the Attribute [ValidateAntiForgeryToken] To Every Post Action Method Before I was doing so much ASP.NET MVC, I would often see in Channel 9 videos, the presenter add the AntiForgeryToken() after the BeginForm() method on the cshtml razor page and say something like “you should always add this”.  I never saw them say “and don’t forget to add the attribute ValidateAntiForgeryToken to the controller POST method. Just to be clear, below is what I’m talking about: What this does is to make sure that the trusted … Continue Reading

Awesome Announcement Regarding Code Stars Summit (2 weeks from now)

As most readers of my blog know, I organizer both Silicon Valley Code Camp (going on our 9th year now with dates set for 10/11-12/2014 again at Foothill College in Los Altos) and Code Stars Summit which is happening for the first time this year in San Francisco.   Code Stars Summit is a much smaller event (under 100 people) is a paid event with top quality workshop leaders doing all day training events.   Yesterday, we added the benefit that all attendees will get a 1 year subscription to Frontend Masters.  See the announcement below for details. Breaking News: All attendees of Code Stars Summit will receive a free 1 year subscription to FrontEnd Masters catalog of online courses ($390 value).  FrontEnd Masters has courses in … Continue Reading

User Interface Standards And Why They Are Important (Not Just Computers)


Toyota Prius Versus Chevrolet Volt This morning, I stood hopelessly trying to get into our Prius by pushing the button on the door.  The car kept beeping but I could not get in.  The reason is because our new Volt has trained me recently that pushing the button opens the car.  Finally, after the fog cleared in my head I remembered that I had to touch the inside of the door handle to open the prius (something the Volt does not support). Anyhow, though the cars are manufactured by car companies thousands of miles apart separated by oceans, they still should subscribe to one set of standards.  Can you imagine what would happen if the brake and gas peddles were on different sides?  Just sayin… VOLT … Continue Reading

Quickbooks – Intuit Customer Support Awesome!

I think I've probably blogged this already in previous years but I'm doing it again because I'm just so darn pleased.  As almost everyone who has every called customer service knows, when someone on the other end answers and you likely know which country they are in ("apply your own prejudice"), you have that sinking feeling of "this is going to be a miserable call".  Well, when I call Intuit QuickBooks support, I do know when the person answers they are from far far away, but I'm confident they will be able to solve my problems. My Problems For me, I'm an S-Corp, which in American means I have a corporation that I own myself that basically does all my business transactions.  That includes all my customers, expenses, business hobbies, … Continue Reading


Get every new post delivered to your Inbox

Join other followers: