New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
request_token not getting verified correctly (Contao 4.6.6 & 4.6.8) #8
Comments
Can you please try version 0.4.5 if this error still exists? |
Thanks for the new version, it does clear the element.button error, but unfortunately not this one. So no, it doesn't work with 0.4.5. |
Updated Contao from 4.6.6 to 4.6.8, unfortunately no change, still not working. Can you point in any direction, where one (me) can take a look at? |
Anything? :) |
They changed the javascript order between 4.4 and 4.6. As fieldpalette uses jQuery in Backend mode, jQuery is currently invoked too late. We currently investigate the problem und will try to fix soon, but as we use only LTS-Versions in our own projects, providing support to non-LTS Versions is not on highest priority. |
Related to heimrichhannot/contao-utils-bundle#5 |
I know and understand, supporting non-LTS is unfortunately not the highest priority. I wouldn't use the 4.6 if it weren't for the DSGVO changes.... Just updated two weeks ago, just because of this.... But, regarding the problem: If I set the RT as a new value (ie "req_tok") in ButtonElement I do get the right RT, but I cannot get it as th correct parameter. Like so:
and allow it in the switch afterwards, I do get the "req_tok" correctly appended to the link, with the correct RT. The RT that is alread set in the link (rt=...) is still the wrong one. This is the link for the site call This is the link, that is set for the fieldpalette entries See the difference in the RT already? If I now change as mentioned above, this is what I get There are two different values already for the RT, so the JS is using the already wrong second one. What I can't figure out, if I set the RT in ButtonElement as "rt" like so
I still get the correct one with "req_tok", but not as "rt". So somewhere afterwards it must get overridden, but where....? Hope this makes sense to you, if not, please ask, I will examine further. Again, I can understand the not-priority support, but if you could point me in further directions, I will search for the error. And as soon, as I find, I will send a PR. |
This was related to heimrichhannot/contao-utils-bundle#5. Contao did change the token_manager within a bugfix release (contao/core-bundle@47a2e6a). This is why we do not use non-LTS contao for our customer projects. Fixed it right now in 0.4.6. Also the way javascript is invoked and ordered has changed… Currently could fix it using the |
Thanks a lot, the updated utils boundle did solve the error. Thank you a lot! If you come to Munich the next time, let me know, the first beer is on me! :) So I was in the wrong place at all. :| |
Could you be more specific? I cannot see any difference between 4.4 and 4.6 regarding JavaScript loading order. May be open an issue about that in contao/contao. |
@fritzmg Have an eye on this commit: contao/contao@8ae4a8f If you used |
Hm, that commit only adds support for // oh this is about the back end ... |
@fritzmg Sorry for the late reply. Yes this affects the back end only. No idea why |
Fieldpalette is actually not usable under 4.6.6 (downgrade because of #153 ) because of the request token not being verified correctly.
You get this modal window while creating a new entry or changing an existing. But you can't delete an entry (I assume because of no modal window with the rt-message to confirm).
The text was updated successfully, but these errors were encountered: