Closed jonleverrier closed 4 days ago
Nothing changed in Craft 4 recently that would have affected CSRF validation.
If you haven’t noticed the error affecting control panel usage (or front-end forms, if you have any), most likely these are coming from robot form submissions on cached pages, and CSRF validation is working as intended.
What happened?
Description
I've started to see a few of these errors in my log file since updating recently.
On a particular installation running
4.11.5
some of my users have reported seeing a Craft error 400 page upon visiting a particular url, or after submitting a form which is posted to a custom controller.Posting here because I saw there were recent changes to live preview and CsrfValidation (I think).
Stack trace (apologies for the formatting):
Steps to reproduce
1.
Expected behavior
Actual behavior
Craft CMS version
4.11.5
PHP version
8.1
Operating system and version
No response
Database type and version
No response
Image driver and version
No response
Installed plugins and versions
-