aspnet
diff --git a/‎src/Microsoft.AspNetCore.Antiforgery/AntiforgeryOptions.cs‎
Lines changed: 83 additions & 62 deletions b/‎src/Microsoft.AspNetCore.Antiforgery/AntiforgeryOptions.cs‎
Lines changed: 83 additions & 62 deletions
diff --git a/‎src/Microsoft.AspNetCore.Antiforgery/Internal/AntiforgeryOptionsSetup.cs‎
Lines changed: 2 additions & 2 deletions b/‎src/Microsoft.AspNetCore.Antiforgery/Internal/AntiforgeryOptionsSetup.cs‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/Microsoft.AspNetCore.Antiforgery/Internal/DefaultAntiforgery.cs‎
Lines changed: 6 additions & 7 deletions b/‎src/Microsoft.AspNetCore.Antiforgery/Internal/DefaultAntiforgery.cs‎
Lines changed: 6 additions & 7 deletions
diff --git a/‎src/Microsoft.AspNetCore.Antiforgery/Internal/DefaultAntiforgeryTokenStore.cs‎
Lines changed: 7 additions & 19 deletions b/‎src/Microsoft.AspNetCore.Antiforgery/Internal/DefaultAntiforgeryTokenStore.cs‎
Lines changed: 7 additions & 19 deletions
@@ -14,102 +14,123 @@ public class AntiforgeryOptions
         private const string AntiforgeryTokenFieldName = "__RequestVerificationToken";
         private const string AntiforgeryTokenHeaderName = "RequestVerificationToken";
 
-        private string _cookieName;
         private string _formFieldName = AntiforgeryTokenFieldName;
 
+        private CookieBuilder _cookieBuilder = new CookieBuilder
+        {
+            SameSite = SameSiteMode.Strict,
+            HttpOnly = true
+        };
+
         /// <summary>
         /// The default cookie prefix, which is ".AspNetCore.Antiforgery.".
         /// </summary>
         public static readonly string DefaultCookiePrefix = ".AspNetCore.Antiforgery.";
 
         /// <summary>
-        /// Specifies the name of the cookie that is used by the antiforgery system.
+        /// Determines the settings used to create the antiforgery cookies.
         /// </summary>
         /// <remarks>
-        /// If an explicit name is not provided, the system will automatically generate a
+        /// <para>
+        /// If an explicit <see cref="CookieBuilder.Name"/> is not provided, the system will automatically generate a
         /// unique name that begins with <see cref="DefaultCookiePrefix"/>.
+        /// </para>
+        /// <para>
+        /// <see cref="CookieBuilder.SameSite"/> defaults to <see cref="SameSiteMode.Strict"/>.
+        /// <see cref="CookieBuilder.HttpOnly"/> defaults to <c>true</c>.
+        /// </para>
         /// </remarks>
-        public string CookieName
+        public CookieBuilder Cookie
         {
-            get
-            {
-                return _cookieName;
-            }
-            set
-            {
-                if (value == null)
-                {
-                    throw new ArgumentNullException(nameof(value));
-                }
-
-                _cookieName = value;
-            }
+            get => _cookieBuilder;
+            set => _cookieBuilder = value ?? throw new ArgumentNullException(nameof(value));
         }
 
         /// <summary>
-        /// This is obsolete and will be removed in a future version.
-        /// The recommended alternative is to use ConfigureCookieOptions.
-        /// The path set on the cookie. If set to <c>null</c>, the "path" attribute on the cookie is set to the current
-        /// request's <see cref="HttpRequest.PathBase"/> value. If the value of <see cref="HttpRequest.PathBase"/> is
-        /// <c>null</c> or empty, then the "path" attribute is set to the value of <see cref="CookieOptions.Path"/>.
+        /// Specifies the name of the antiforgery token field that is used by the antiforgery system.
         /// </summary>
-        [Obsolete("This is obsolete and will be removed in a future version. The recommended alternative is to use ConfigureCookieOptions.")]
-        public PathString? CookiePath { get; set; }
+        public string FormFieldName
+        {
+            get => _formFieldName;
+            set => _formFieldName = value ?? throw new ArgumentNullException(nameof(value));
+        }
 
         /// <summary>
-        /// This is obsolete and will be removed in a future version.
-        /// The recommended alternative is to use ConfigureCookieOptions.
-        /// The domain set on the cookie. By default its <c>null</c> which results in the "domain" attribute not being set.
+        /// Specifies the name of the header value that is used by the antiforgery system. If <c>null</c> then
+        /// antiforgery validation will only consider form data.
         /// </summary>
-        [Obsolete("This is obsolete and will be removed in a future version. The recommended alternative is to use ConfigureCookieOptions.")]
-        public string CookieDomain { get; set; }
+        public string HeaderName { get; set; } = AntiforgeryTokenHeaderName;
 
         /// <summary>
-        /// Configures the <see cref="CookieOptions"/> of the antiforgery cookies. Without additional configuration, the 
-        /// default values antiforgery cookie options are true for <see cref="CookieOptions.HttpOnly"/>, null for
-        /// <see cref="CookieOptions.Domain"/> and <see cref="SameSiteMode.Strict"/> for <see cref="CookieOptions.SameSite"/>.
+        /// Specifies whether to suppress the generation of X-Frame-Options header
+        /// which is used to prevent ClickJacking. By default, the X-Frame-Options
+        /// header is generated with the value SAMEORIGIN. If this setting is 'true',
+        /// the X-Frame-Options header will not be generated for the response.
         /// </summary>
-        public Action<HttpContext, CookieOptions> ConfigureCookieOptions { get; set; }
+        public bool SuppressXFrameOptionsHeader { get; set; }
 
+        #region Obsolete API
         /// <summary>
-        /// Specifies the name of the antiforgery token field that is used by the antiforgery system.
+        /// <para>
+        /// This property is obsolete and will be removed in a future version. The recommended alternative is <seealso cref="CookieBuilder.Name"/> on <see cref="Cookie"/>.
+        /// </para>
+        /// <para>
+        /// Specifies the name of the cookie that is used by the antiforgery system.
+        /// </para>
         /// </summary>
-        public string FormFieldName
-        {
-            get
-            {
-                return _formFieldName;
-            }
-            set
-            {
-                if (value == null)
-                {
-                    throw new ArgumentNullException(nameof(value));
-                }
+        /// <remarks>
+        /// If an explicit name is not provided, the system will automatically generate a
+        /// unique name that begins with <see cref="DefaultCookiePrefix"/>.
+        /// </remarks>
+        [Obsolete("This property is obsolete and will be removed in a future version. The recommended alternative is " + nameof(Cookie) + "." + nameof(CookieBuilder.Name) + ".")]
+        public string CookieName { get => Cookie.Name; set => Cookie.Name = value; }
 
-                _formFieldName = value;
-            }
-        }
+        /// <summary>
+        /// <para>
+        /// This property is obsolete and will be removed in a future version. The recommended alternative is <seealso cref="CookieBuilder.Path"/> on <see cref="Cookie"/>.
+        /// </para>
+        /// <para>
+        /// The path set on the cookie. If set to <c>null</c>, the "path" attribute on the cookie is set to the current
+        /// request's <see cref="HttpRequest.PathBase"/> value. If the value of <see cref="HttpRequest.PathBase"/> is
+        /// <c>null</c> or empty, then the "path" attribute is set to the value of <see cref="CookieOptions.Path"/>.
+        /// </para>
+        /// </summary>
+        [Obsolete("This property is obsolete and will be removed in a future version. The recommended alternative is " + nameof(Cookie) + "." + nameof(CookieBuilder.Path) + ".")]
+        public PathString? CookiePath { get => Cookie.Path; set => Cookie.Path = value; }
 
         /// <summary>
-        /// Specifies the name of the header value that is used by the antiforgery system. If <c>null</c> then
-        /// antiforgery validation will only consider form data.
+        /// <para>
+        /// This property is obsolete and will be removed in a future version. The recommended alternative is <seealso cref="CookieBuilder.Domain"/> on <see cref="Cookie"/>.
+        /// </para>
+        /// <para>
+        /// The domain set on the cookie. By default its <c>null</c> which results in the "domain" attribute not being set.
+        /// </para>
         /// </summary>
-        public string HeaderName { get; set; } = AntiforgeryTokenHeaderName;
+        [Obsolete("This property is obsolete and will be removed in a future version. The recommended alternative is " + nameof(Cookie) + "." + nameof(CookieBuilder.Domain) + ".")]
+        public string CookieDomain { get => Cookie.Domain; set => Cookie.Domain = value; }
+
 
         /// <summary>
+        /// <para>
+        /// This property is obsolete and will be removed in a future version. 
+        /// The recommended alternative is to set <seealso cref="CookieBuilder.SecurePolicy"/> on <see cref="Cookie"/>.
+        /// </para>
+        /// <para>
+        /// <c>true</c> is equivalent to <see cref="CookieSecurePolicy.Always"/>.
+        /// <c>false</c> is equivalent to <see cref="CookieSecurePolicy.None"/>.
+        /// </para>
+        /// <para>
         /// Specifies whether SSL is required for the antiforgery system
         /// to operate. If this setting is 'true' and a non-SSL request
         /// comes into the system, all antiforgery APIs will fail.
+        /// </para>
         /// </summary>
-        public bool RequireSsl { get; set; }
-
-        /// <summary>
-        /// Specifies whether to suppress the generation of X-Frame-Options header
-        /// which is used to prevent ClickJacking. By default, the X-Frame-Options
-        /// header is generated with the value SAMEORIGIN. If this setting is 'true',
-        /// the X-Frame-Options header will not be generated for the response.
-        /// </summary>
-        public bool SuppressXFrameOptionsHeader { get; set; }
+        [Obsolete("This property is obsolete and will be removed in a future version. The recommended alternative is to set " + nameof(Cookie) + "." + nameof(CookieBuilder.SecurePolicy) + ".")]
+        public bool RequireSsl
+        {
+            get => Cookie.SecurePolicy == CookieSecurePolicy.Always;
+            set => Cookie.SecurePolicy = value ? CookieSecurePolicy.Always : CookieSecurePolicy.None;
+        }
+        #endregion
     }
-}
+}
@@ -18,10 +18,10 @@ public AntiforgeryOptionsSetup(IOptions<DataProtectionOptions> dataProtectionOpt
 
         public static void ConfigureOptions(AntiforgeryOptions options, DataProtectionOptions dataProtectionOptions)
         {
-            if (options.CookieName == null)
+            if (options.Cookie.Name == null)
             {
                 var applicationId = dataProtectionOptions.ApplicationDiscriminator ?? string.Empty;
-                options.CookieName = AntiforgeryOptions.DefaultCookiePrefix + ComputeCookieName(applicationId);
+                options.Cookie.Name = AntiforgeryOptions.DefaultCookiePrefix + ComputeCookieName(applicationId);
             }
         }
 
 
@@ -111,7 +111,7 @@ public async Task<bool> IsRequestValidAsync(HttpContext httpContext)
             var tokens = await _tokenStore.GetRequestTokensAsync(httpContext);
             if (tokens.CookieToken == null)
             {
-                _logger.MissingCookieToken(_options.CookieName);
+                _logger.MissingCookieToken(_options.Cookie.Name);
                 return false;
             }
 
@@ -160,7 +160,7 @@ public async Task ValidateRequestAsync(HttpContext httpContext)
             if (tokens.CookieToken == null)
             {
                 throw new AntiforgeryValidationException(
-                    Resources.FormatAntiforgery_CookieToken_MustBeProvided(_options.CookieName));
+                    Resources.FormatAntiforgery_CookieToken_MustBeProvided(_options.Cookie.Name));
             }
 
             if (tokens.RequestToken == null)
@@ -265,12 +265,11 @@ private void SaveCookieTokenAndHeader(HttpContext httpContext, string cookieToke
 
         private void CheckSSLConfig(HttpContext context)
         {
-            if (_options.RequireSsl && !context.Request.IsHttps)
+            if (_options.Cookie.SecurePolicy == CookieSecurePolicy.Always && !context.Request.IsHttps)
             {
-                throw new InvalidOperationException(Resources.FormatAntiforgeryWorker_RequireSSL(
-                    nameof(AntiforgeryOptions),
-                    nameof(AntiforgeryOptions.RequireSsl),
-                    "true"));
+                throw new InvalidOperationException(Resources.FormatAntiforgery_RequiresSSL(
+                    string.Join(".", nameof(AntiforgeryOptions), nameof(AntiforgeryOptions.Cookie), nameof(CookieBuilder.SecurePolicy)),
+                    nameof(CookieSecurePolicy.Always)));
             }
         }
 
 
@@ -28,7 +28,7 @@ public string GetCookieToken(HttpContext httpContext)
         {
             Debug.Assert(httpContext != null);
 
-            var requestCookie = httpContext.Request.Cookies[_options.CookieName];
+            var requestCookie = httpContext.Request.Cookies[_options.Cookie.Name];
             if (string.IsNullOrEmpty(requestCookie))
             {
                 // unable to find the cookie.
@@ -42,7 +42,7 @@ public async Task<AntiforgeryTokenSet> GetRequestTokensAsync(HttpContext httpCon
         {
             Debug.Assert(httpContext != null);
 
-            var cookieToken = httpContext.Request.Cookies[_options.CookieName];
+            var cookieToken = httpContext.Request.Cookies[_options.Cookie.Name];
 
             // We want to delay reading the form as much as possible, for example in case of large file uploads,
             // request token could be part of the header.
@@ -69,22 +69,12 @@ public void SaveCookieToken(HttpContext httpContext, string token)
             Debug.Assert(httpContext != null);
             Debug.Assert(token != null);
 
-            var options = new CookieOptions
-            {
-                HttpOnly = true,
-#pragma warning disable 618
-                Domain = _options.CookieDomain,
-#pragma warning restore 618
-                SameSite = SameSiteMode.Strict,
-                Secure = _options.RequireSsl
-            };
-
-#pragma warning disable 618
-            if (_options.CookiePath != null)
+            var options = _options.Cookie.Build(httpContext);
+
+            if (_options.Cookie.Path != null)
             {
-                options.Path = _options.CookiePath.ToString();
+                options.Path = _options.Cookie.Path.ToString();
             }
-#pragma warning restore 618
             else
             {
                 var pathBase = httpContext.Request.PathBase.ToString();
@@ -94,9 +84,7 @@ public void SaveCookieToken(HttpContext httpContext, string token)
                 }
             }
 
-            _options.ConfigureCookieOptions?.Invoke(httpContext, options);
-
-            httpContext.Response.Cookies.Append(_options.CookieName, token, options);
+            httpContext.Response.Cookies.Append(_options.Cookie.Name, token, options);
         }
     }
 }
Original file line number	Diff line number	Diff line change
`@@ -18,10 +18,10 @@ public AntiforgeryOptionsSetup(IOptions<DataProtectionOptions> dataProtectionOpt`
`18`	`18`
`19`	`19`	`public static void ConfigureOptions(AntiforgeryOptions options, DataProtectionOptions dataProtectionOptions)`
`20`	`20`	`{`
`21`		`- if (options.CookieName == null)`
	`21`	`+ if (options.Cookie.Name == null)`
`22`	`22`	`{`
`23`	`23`	`var applicationId = dataProtectionOptions.ApplicationDiscriminator ?? string.Empty;`
`24`		`- options.CookieName = AntiforgeryOptions.DefaultCookiePrefix + ComputeCookieName(applicationId);`
	`24`	`+ options.Cookie.Name = AntiforgeryOptions.DefaultCookiePrefix + ComputeCookieName(applicationId);`
`25`	`25`	`}`
`26`	`26`	`}`
`27`	`27`
Original file line number	Diff line number	Diff line change
`@@ -111,7 +111,7 @@ public async Task<bool> IsRequestValidAsync(HttpContext httpContext)`
`111`	`111`	`var tokens = await _tokenStore.GetRequestTokensAsync(httpContext);`
`112`	`112`	`if (tokens.CookieToken == null)`
`113`	`113`	`{`
`114`		`- _logger.MissingCookieToken(_options.CookieName);`
	`114`	`+ _logger.MissingCookieToken(_options.Cookie.Name);`
`115`	`115`	`return false;`
`116`	`116`	`}`
`117`	`117`
`@@ -160,7 +160,7 @@ public async Task ValidateRequestAsync(HttpContext httpContext)`
`160`	`160`	`if (tokens.CookieToken == null)`
`161`	`161`	`{`
`162`	`162`	`throw new AntiforgeryValidationException(`
`163`		`- Resources.FormatAntiforgery_CookieToken_MustBeProvided(_options.CookieName));`
	`163`	`+ Resources.FormatAntiforgery_CookieToken_MustBeProvided(_options.Cookie.Name));`
`164`	`164`	`}`
`165`	`165`
`166`	`166`	`if (tokens.RequestToken == null)`
`@@ -265,12 +265,11 @@ private void SaveCookieTokenAndHeader(HttpContext httpContext, string cookieToke`
`265`	`265`
`266`	`266`	`private void CheckSSLConfig(HttpContext context)`
`267`	`267`	`{`
`268`		`- if (_options.RequireSsl && !context.Request.IsHttps)`
	`268`	`+ if (_options.Cookie.SecurePolicy == CookieSecurePolicy.Always && !context.Request.IsHttps)`
`269`	`269`	`{`
`270`		`- throw new InvalidOperationException(Resources.FormatAntiforgeryWorker_RequireSSL(`
`271`		`- nameof(AntiforgeryOptions),`
`272`		`- nameof(AntiforgeryOptions.RequireSsl),`
`273`		`- "true"));`
	`270`	`+ throw new InvalidOperationException(Resources.FormatAntiforgery_RequiresSSL(`
	`271`	`+ string.Join(".", nameof(AntiforgeryOptions), nameof(AntiforgeryOptions.Cookie), nameof(CookieBuilder.SecurePolicy)),`
	`272`	`+ nameof(CookieSecurePolicy.Always)));`
`274`	`273`	`}`
`275`	`274`	`}`
`276`	`275`
Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,7 @@ public string GetCookieToken(HttpContext httpContext)`
`28`	`28`	`{`
`29`	`29`	`Debug.Assert(httpContext != null);`
`30`	`30`
`31`		`- var requestCookie = httpContext.Request.Cookies[_options.CookieName];`
	`31`	`+ var requestCookie = httpContext.Request.Cookies[_options.Cookie.Name];`
`32`	`32`	`if (string.IsNullOrEmpty(requestCookie))`
`33`	`33`	`{`
`34`	`34`	`// unable to find the cookie.`
`@@ -42,7 +42,7 @@ public async Task<AntiforgeryTokenSet> GetRequestTokensAsync(HttpContext httpCon`
`42`	`42`	`{`
`43`	`43`	`Debug.Assert(httpContext != null);`
`44`	`44`
`45`		`- var cookieToken = httpContext.Request.Cookies[_options.CookieName];`
	`45`	`+ var cookieToken = httpContext.Request.Cookies[_options.Cookie.Name];`
`46`	`46`
`47`	`47`	`// We want to delay reading the form as much as possible, for example in case of large file uploads,`
`48`	`48`	`// request token could be part of the header.`
`@@ -69,22 +69,12 @@ public void SaveCookieToken(HttpContext httpContext, string token)`
`69`	`69`	`Debug.Assert(httpContext != null);`
`70`	`70`	`Debug.Assert(token != null);`
`71`	`71`
`72`		`- var options = new CookieOptions`
`73`		`- {`
`74`		`- HttpOnly = true,`
`75`		`-#pragma warning disable 618`
`76`		`- Domain = _options.CookieDomain,`
`77`		`-#pragma warning restore 618`
`78`		`- SameSite = SameSiteMode.Strict,`
`79`		`- Secure = _options.RequireSsl`
`80`		`- };`
`81`		`-`
`82`		`-#pragma warning disable 618`
`83`		`- if (_options.CookiePath != null)`
	`72`	`+ var options = _options.Cookie.Build(httpContext);`
	`73`	`+`
	`74`	`+ if (_options.Cookie.Path != null)`
`84`	`75`	`{`
`85`		`- options.Path = _options.CookiePath.ToString();`
	`76`	`+ options.Path = _options.Cookie.Path.ToString();`
`86`	`77`	`}`
`87`		`-#pragma warning restore 618`
`88`	`78`	`else`
`89`	`79`	`{`
`90`	`80`	`var pathBase = httpContext.Request.PathBase.ToString();`
`@@ -94,9 +84,7 @@ public void SaveCookieToken(HttpContext httpContext, string token)`
`94`	`84`	`}`
`95`	`85`	`}`
`96`	`86`
`97`		`- _options.ConfigureCookieOptions?.Invoke(httpContext, options);`
`98`		`-`
`99`		`- httpContext.Response.Cookies.Append(_options.CookieName, token, options);`
	`87`	`+ httpContext.Response.Cookies.Append(_options.Cookie.Name, token, options);`
`100`	`88`	`}`
`101`	`89`	`}`
`102`	`90`	`}`