Html.AntiForgeryToken() automatically adds HTTP response header X-Frame-Options
Just a note that using @Html.AntiForgeryToken() in MVC will automatically send the X-Frame-Options: SAMEORIGIN http response header.
A bunch of stuff that I found useful and don't want to forget next time I have the same problem.
Just a note that using @Html.AntiForgeryToken() in MVC will automatically send the X-Frame-Options: SAMEORIGIN http response header.
Posted by Billy at 12:55 PM 2 comments