Antiforgery token with Blazor .Net 8 on a web farm - machinekey not used
I'd like to deploy a Blazor Web App (.Net 8) on a web farm (windows + IIS). If I deploy the app on a single machine, it works fine. But when many servers are used with load-balancing, then an Antiforgery error is launched when accessnig pages that use antiforgery:
Microsoft.AspNetCore.Antiforgery.DefaultAntiforgery - An exception was thrown while deserializing the token. Microsoft.AspNetCore.Antiforgery.AntiforgeryValidationException: The antiforgery token could not be decrypted.
---> System.Security.Cryptography.CryptographicException: The key {d1a4d3f6-a151-4829-8561-e7e49e3c1341} was not found in the key ring. For more information go to https://aka.ms/aspnet/dataprotectionwarning
I've read this article on Anti forgery token and manchine key and applied what the author suggested (it means forcing the same machine key on IIS on all servers), but unfortunately it doesn't resolve the issue.
Am I missing something?
Thank you
You need to store the Data Protection Key ring in some persistent storage, like a database or as a file somewhere.
I did a blog post about how to store it in Azure Key Vault (As a learning exercise) : Storing the ASP.NET Core Data Protection Key Ring in Azure Key Vault
However, this is not an example of production quality. I suggest you use one of the more hardened storage alternatives as described here: https://learn.microsoft.com/en-us/aspnet/core/security/data-protection/configuration/overview?view=aspnetcore-7.0
The picture below shows an example of what it can look like in production and if you want to share cookies across service instances.
- Blazor WebAssembly Monitor Threading exception
- .net 8 blazor navlink style not working for external url
- Found markup element with unexpected name 'Cascading AuthenticationState'
- Model binding Blazor SSR pages
- Blazor Hosted WebAssembly with Keycloak and Basic Authentication Issue
- .NET 8 Blazor web app - single sign-on with Windows credentials
- Unexpected authorization behaviour in a Blazor Web App with .NET 8
- Blazor: Conditionally display RenderFragment component
- Getting Warning BL0005 when modeling data for EditForm in Blazor
- How to set line_shape in Plotly.Blazor?
- Blazor RadzenDataGrid not showing pretty grid
- Blazor Radzen filtering and sorting not working/interacting
- Blazor server side application throwing "System.InvalidOperationException: JavaScript interop calls cannot be issued at this time. ..." during reload
- Blazor .net8 @onclick don't work. How to fix it?
- Blazor Server button refresh while waiting
- Blazor two-way binding with readonly data types
- changing the font colour of specified rows in MudDataGrid doesnt work
- How to two-way bind a checkbox to a boolean in MAUI Blazor
- How do I store user data in a Blazor Hybrid App
- Unable to resolve 'Microsoft.NETCore.App.Runtime.Mono.browser-wasm' for 'net8.0' in Blazor project
- Custom Blazor InputText component
- BuildRenderTree is not called in a razor page that inherits of my custom component
- How to sign out over HttpContext in server-side Blazor
- MudSelect Display Text different behavior when property to bind values is empty vs not
- Mudblazor library is not able to handle my login request
- What is the Proper Way to Configure Blazor Web App Navigation to Handle 404?
- How to use localization resource file?
- Data not loading after reloading page in Blazor
- Blazor WebAssembly button onclick not triggered
- Is there a way to access Cookies in Blazor with @rendermode="InteractiveAuto" in the Oninitialized hook