This quick post is a response to a question about anti-forgery tokens I saw on twitter:
.NET Core程序中使用User Secrets存储敏感数据
https://blog.mariusschulz.com/2017/06/11/global-antiforgery-token-validation-in-asp-net-core