public AntiForgeryToken Deserialize(string serializedToken)
{
try
{
using (MemoryStream stream = new MemoryStream(_cryptoSystem.Unprotect(serializedToken)))
{
using (BinaryReader reader = new BinaryReader(stream))
{
AntiForgeryToken token = DeserializeImpl(reader);
if (token != null)
{
return(token);
}
}
}
}
catch (Exception e)
{
Console.WriteLine(e.Message);
// swallow all exceptions - homogenize error if something went wrong
}
// if we reached this point, something went wrong deserializing
throw new Exception();
// throw HttpAntiForgeryException.CreateDeserializationFailedException();
}
AntiForgeryToken?DeserializeImpl(string serializedToken)
{
try {
using (MemoryStream stream = new MemoryStream(_cryptoSystem.Unprotect(serializedToken))) {
using (BinaryReader reader = new BinaryReader(stream)) {
AntiForgeryToken?token = DeserializeImpl(reader);
if (token != null)
{
return(token);
}
}
}
} catch {
// swallow all exceptions - homogenize error if something went wrong
}
return(null);
}