From 44834debeb6bd919a4ec166eb8f13b9d351cc535 Mon Sep 17 00:00:00 2001
From: Ryan Nowak <nowakra@gmail.com>
Date: Fri, 5 Feb 2016 14:07:54 -0800
Subject: [PATCH] Fix broken code path in antiforgery

---
 .../ViewFeatures/AntiforgeryExtensions.cs           | 13 ++++---------
 1 file changed, 4 insertions(+), 9 deletions(-)

diff --git a/src/Microsoft.AspNetCore.Mvc.ViewFeatures/ViewFeatures/AntiforgeryExtensions.cs b/src/Microsoft.AspNetCore.Mvc.ViewFeatures/ViewFeatures/AntiforgeryExtensions.cs
index 630316e182..611fed18d6 100644
--- a/src/Microsoft.AspNetCore.Mvc.ViewFeatures/ViewFeatures/AntiforgeryExtensions.cs
+++ b/src/Microsoft.AspNetCore.Mvc.ViewFeatures/ViewFeatures/AntiforgeryExtensions.cs
@@ -57,17 +57,12 @@ namespace Microsoft.AspNetCore.Mvc.ViewFeatures
             // _fieldName containing almost any character.
             public void WriteTo(TextWriter writer, HtmlEncoder encoder)
             {
-                var builder = writer as IHtmlContentBuilder;
-                if (builder != null)
+                var htmlTextWriter = writer as HtmlTextWriter;
+                if (htmlTextWriter != null)
                 {
                     // If possible, defer encoding until we're writing to the response.
-                    // But there's little reason to keep this IHtmlContent instance around.
-                    builder
-                        .AppendHtml("<input name=\"")
-                        .Append(_fieldName)
-                        .AppendHtml("\" type=\"hidden\" value=\"")
-                        .Append(_requestToken)
-                        .AppendHtml("\" />");
+                    htmlTextWriter.Write(this);
+                    return;
                 }
 
                 writer.Write("<input name=\"");