-
-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bug on Key SecurityTokenHasExpiredSoActionHasBeenCanceledPleaseRetry #16085
Comments
What is value of the MAIN_FEATURES_LEVEL variable ? |
It makes no difference which MAIN_FEATURES_LEVEL is set. |
PS Only on the updated I can check for bugs with the debug tools module for it was installed before- |
@choybe what is you browser and version ? |
no i don't sink it has something to do with the browser: An other stange behaviour with v13 is: When I try to install from the scratch with the option on step1 to add a SuperUser
When I install v13 without this option, I can add at the next step a SuperUser as usual, without any error message |
As I see I am not alone with this bug - in some dolibarr forum . people struggle as well with the security token expired message. |
I think I have found the solution! In former dolibarr versions an update with additional modules where never a problem even if they were no more compatible (they were just no more usable) In the DB v13 version it seems it provokes this security token expired message. |
Bug
[Short description]
After new installation of 13.0 and after update 12.4 → 13.0
certain operations (eg enable modules) are refused with the message:"Security token has expired, so action has been canceled. Please try again." This message seems to be linked to the v13 new key: SecurityTokenHasExpiredSoActionHasBeenCanceledPleaseRetry
and the coherent changes made on token (see changelog)
In the result the v13 is unusable on my webserver for there is no way and no hint to find how to refresh this security token
as v12 were running so far without any problem on my webserver I have to conclude that there is a bug in v13
Environment
Version: Dolibarr 13.0.0
OS: Linux SMP Debian 4.19.160-2 x86_64
Web server: Apache
Database: MySQL or MariaDB 5.5.5-10.3.27
URL(s): Any URL
Expected and actual behavior
To overcome this nasty message I tried the configuration
$dolibarr_nocsrfcheck ⁼ 1 in conf/conf.php
MAIN_SECURITY_CSRF_WITH_TOKEN = 0 in Setup -> Other
But it changed nothing the error message "Security token has expired, so action has been canceled. Please try again." continue
variablesModuleEnable.txt
The text was updated successfully, but these errors were encountered: