protected void Page_Init(object sender, EventArgs e)
{
// -- OUR CODE
// Cookie reading
DataTable cartTable = new DataTable();
cartTable.Columns.Add("Albums", typeof(string));
XmlDocument xmldoc2 = new XmlDocument();
foreach (string cookieName in Request.Cookies.AllKeys)
{
HttpCookie cookie = Request.Cookies[cookieName];
if (cookie.Name.Contains("cart_"))
{
int amount = int.Parse(cookie["amount"]);
Album album = new Album();
album = album.findById(int.Parse(cookie["id"]), Server);
DataRow dtrow = cartTable.NewRow();
dtrow["Albums"] = album.Artist + " - " + album.Title + " (" + amount + " x " + album.Price + " kr.)";
cartTable.Rows.Add(dtrow);
}
}
GridViewCart.DataSource = cartTable;
GridViewCart.DataBind();
// -- OUR CODE END
// The code below helps to protect against XSRF attacks
var requestCookie = Request.Cookies[AntiXsrfTokenKey];
Guid requestCookieGuidValue;
if (requestCookie != null && Guid.TryParse(requestCookie.Value, out requestCookieGuidValue))
{
// Use the Anti-XSRF token from the cookie
_antiXsrfTokenValue = requestCookie.Value;
Page.ViewStateUserKey = _antiXsrfTokenValue;
}
else
{
// Generate a new Anti-XSRF token and save to the cookie
_antiXsrfTokenValue = Guid.NewGuid().ToString("N");
Page.ViewStateUserKey = _antiXsrfTokenValue;
var responseCookie = new HttpCookie(AntiXsrfTokenKey)
{
HttpOnly = true,
Value = _antiXsrfTokenValue
};
if (FormsAuthentication.RequireSSL && Request.IsSecureConnection)
{
responseCookie.Secure = true;
}
Response.Cookies.Set(responseCookie);
}
Page.PreLoad += master_Page_PreLoad;
}