Bug #85844

Invalid request for route "/ajax/system-information/render" after session timed out

Added by Stephan Großberndt over 2 years ago. Updated 8 months ago.

Status:
Under Review
Priority:
Should have
Assignee:
-
Category:
Backend User Interface
Target version:
-
Start date:
2018-08-14
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
9
PHP Version:
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

When you keep a TYPO3 backend tab open for a long time and e.g. put your computer to standby the regular pings to keep the sesssion alive are no longer executed.

When the computer is resumed from standby an Exception is logged to sys_log:

Core: Exception handler (WEB): Uncaught TYPO3 Exception: #1425389455: Invalid request for route "/ajax/system-information/render" | 
TYPO3\CMS\Backend\Routing\Exception\InvalidRequestTokenException thrown in file /typo3_src-8.7.18/typo3/sysext/backend/Classes/Http/RouteDispatcher.php in line 49. 
Requested URL: https://www.example.org/typo3/index.php?ajaxID=%%2Fajax%%2Fsystem-information%%2Frender&ajaxToken=--AnonymizedToken--

Files

Screenshot 2018-12-06 09.41.00.png (64.1 KB) Screenshot 2018-12-06 09.41.00.png Christoph Kratz, 2018-12-06 09:41

Related issues

Related to TYPO3 Core - Bug #69763: Re-login after expired backend session throws exceptionClosedNicole Cordes2015-09-13

Actions
#1

Updated by Christoph Kratz almost 2 years ago

Stephan Großberndt wrote:

When you keep a TYPO3 backend tab open for a long time and e.g. put your computer to standby the regular pings to keep the sesssion alive are no longer executed.

When the computer is resumed from standby an Exception is logged to sys_log:

[...]

Same same in TYPO3 v9.5.2

#2

Updated by Susanne Moog 8 months ago

  • Status changed from New to Needs Feedback

I'm not quite sure how the solution here should look like. You are reviving the computer from stand-by and are factually logged out - which the system should actually notice once you click anywhere. What would you expect to happen?

#3

Updated by Stephan Großberndt 8 months ago

In this logged out state apparently ajax requests are sent which cause exceptions which are logged as errors to sys_log. Its okay the ajax calls fail but there should no exceptions be logged to sys_log

#4

Updated by Susanne Moog 8 months ago

  • Category set to Backend User Interface
  • Status changed from Needs Feedback to New
#5

Updated by Christian Eßl 8 months ago

  • Related to Bug #69763: Re-login after expired backend session throws exception added
#6

Updated by Christian Eßl 8 months ago

This occurs in 9.5 only, because the AjaxRequestHandler does not catch the InvalidRequestTokenException (like the normal RequestHandler does).
In 10, AjaxRequestHandler was removed and everything runs through RequestHandler.

#7

Updated by Gerrit Code Review 8 months ago

  • Status changed from New to Under Review

Patch set 1 for branch 9.5 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/63967

Also available in: Atom PDF