CSRF token error message and PHP SessionHandler Warnings #7106
Comments
|
I have the exact same findings in Chrome 70.0.3538.110 for quite some time and assumed it is a Chrome specific issue. |
Did it not happen with other browsers? |
|
I cannot confirm that it does or does not happen with other browsers since I occasionally use Firefox and Safari but never when working with Mautic. |
|
I can confirm it also repros on Safari version 12.0.2 (14606.3.4). |
|
Any update on this, as I'm getting this since I've updated my mautic to version 2.15.0 |
|
I get this issue on firefox too, using ubu 16 |
|
I get it too. Mautic version 2.15.2 running on nginx on ubuntu 18. |
|
We experienced the same. |
|
@afonseca08 @ManasN @online-expert @dsp76 @ced-mohitp can you test #7883 ? |
|
It's OK for me. |
|
@escopecz when you can merge bux fix directly on master branch? |
|
@npracht, I verified the fix using MautiBox. I did not see the error message appear. |
|
A release leader can merge PRs. There is no release leader for the next Mautic 2.x version yet. |
|
@escopecz who can designate a leader for the next release? |
|
That's not the right question to ask. A better question is: Who wants to step up to be a release leader? A release leader can be anyone who has a history of code contributions into Mautic. |
|
What exactly is the role of a release leader? If you wish I can surely help. :-) |
|
A release leader is responsible for 1 release. She/he must ensure that all merged PRs are tested properly so there must be some activity in the community to help test some PRs. Also, no bad (vulnerable, slow, hard-to-maintain, ...) code should not be merged. Then there must be a beta release and a production release. A release leader must have a write permission to the mautic/mautic repository. DB Hurley can grant such permission based on the past contributions. |
Bug Description
I am getting the following error message displayed in the Mautic UI:
"CSRF token error. Try to refresh the page and try again."
It happens when I've had the Mautic window open for several hours or overnight and then return to it. It looks like I remain signed into Mautic but the error displays until I refresh the browser. Upon refreshing it continues to work normally. Note: I have selected for Mautic to remember me so I don't have to sign in again.
Steps to reproduce
Log errors
From mautic/app/logs:
[2019-01-04 17:23:49] mautic.WARNING: PHP Warning - SessionHandler::read(): The session id is too long or contains illegal characters, valid characters are a-z, A-Z, 0-9 and '-,' - in file /home/afonseca/public_html/mautic/vendor/symfony/http-foundation/Session/Storage/Proxy/SessionHandlerProxy.php - at line 62 [] []
[2019-01-04 17:23:50] mautic.WARNING: PHP Warning - SessionHandler::write(): The session id is too long or contains illegal characters, valid characters are a-z, A-Z, 0-9 and '-,' - in file /home/afonseca/public_html/mautic/vendor/symfony/http-foundation/Session/Storage/Proxy/SessionHandlerProxy.php - at line 70 [] []
[2019-01-04 17:23:50] mautic.WARNING: PHP Warning - session_write_close(): Failed to write session data using user defined save handler. (session.save_path: /var/cpanel/php/sessions/ea-php71) - in file /home/afonseca/public_html/mautic/vendor/symfony/http-foundation/Session/Storage/NativeSessionStorage.php - at line 241 [] []
The text was updated successfully, but these errors were encountered: