Json allowget error

Question

This error comes up in our MVC app randomly. Sometimes doing the same exact thing it won\'t sometimes, it will. Does anyone know if this has to do with anything that could be a

Answer 1

You should read http://haacked.com/archive/2009/06/24/json-hijacking.aspx/ before bypassing these security controls.

If you only expose your JSON data in response to a Http POST, then you are not vulnerable to this attack.

You can simply annotate your JSON action with [HttpPost] and in the client do something like

$.post('/blag/JSON', function (data) {
       //do something with my json data object here

});