Login problem with CSRF

BNETDocs / bnetdocs-web

BNETDocs, the documentation and discussion website for Blizzard protocols

https://bnetdocs.org

GNU Affero General Public License v3.0

33 stars 6 forks source link

Login problem with CSRF #59

Closed cen1 closed 8 years ago

cen1 commented 8 years ago

If you idle a bit on the login page and try to login you are greeted with: "The Cross-Site Request Forgery token was invalid. Either the log in form expired, or this may have been a malicious attempt to log you in."

The timeout must be incredibly low and should be increased.

carlbennett commented 8 years ago

Resolved in 80bae8513bbb9734c0a759a4f6660e31b134630b.