-
-
Notifications
You must be signed in to change notification settings - Fork 134
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CSRF fails after relogin #77
Comments
the session or $this->session->get(''_csrf") was flushed after login $this->session->set($this->name, $token); set session failed very time when class csrf init with a new SessionInterface $session , the session is not the existed one, |
Seems PHPSESSID cookie keeps its value after logout. If it's deleted, it works well. |
Likely |
It looks like |
Likely. Want to dig it more? |
thank you |
Expected to log in. Got CSRF protection responding with "Unprocessable entity".
The text was updated successfully, but these errors were encountered: