Bug #77526
closed
Missing CSRF Token when saving files in filelist
0%
Description
On a Debian 8 machine running Typo3 7.6.10 with Postgres 9.4 and PHP 5.6, I can reproduce the error
The CSRF protection token for the requested module is missing or invalid
in Filelist-View by modifying/uploading/deleting any file I want.
Example:
I edited a CSS file, saved it (happens on both, "save" and "save and close"). After I close the editor the error occurs. When I try to change the view or folder I'm currently working in, I get the error (example: filelist view to view the file structure tree)
#1425389455: Invalid request for route "/folder/tree"
This is not only pretty annoying, it also hinders us to ship the installation to the editors as they will need this view frequently.
Files
Updated by Jan Pascal Maas over 7 years ago
tested it on a MySQL-Database and I can not reproduce it there, so it seems to be an database API/AdoDB issue.
Updated by Wouter Wolters over 7 years ago
- Status changed from New to In Progress
- Assignee set to Wouter Wolters
Updated by Wouter Wolters over 7 years ago
- Status changed from In Progress to New
- Assignee deleted (
Wouter Wolters)
I thought I found the reason for this but my findings only apply to latest master that leads to CSRF token problems.
The reasons there is double encoding. My tests on 7.6 are succesful and no problems were found.
Updated by Riccardo De Contardi over 6 years ago
- Status changed from New to Needs Feedback
Does this issue still comes up in version 8.7.x or the latest master?
Updated by Riccardo De Contardi about 6 years ago
- Status changed from Needs Feedback to Closed
No feedback since the last 90 days => closing this issue.
If you think that this is the wrong decision or experience the issue again and have more information about how to reproduce your problem, please reopen it or open a new issue with a reference to this one.
Thank you and best regards