I'm using @Html.AntiForgeryToken()
in the form, and in the controller, I have added the attribute [ValidateAntiForgeryToken]
Before I submit the form, I open the console and edit __RequestVerificationToken with a new valid token (I have got it from another form) when I try to submit the form with the new __RequestVerificationToken value, it's passed.
How can I check if the form value is equal to the server value?