wuchuanbin / php-calendar

Automatically exported from code.google.com/p/php-calendar
0 stars 0 forks source link

Secret Token mismatch? #94

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago
What steps will reproduce the problem?
1. Log in to PHP-Calendar
2. Add new Event
3. Save Event

What is the expected output? What do you see instead?
Expecting calendar with new event added. Instead get message saying "Secret 
Token Mismatch" (see rest below).

What version of the product are you using? On what operating system?
Latest version 2.0 Beta 10.

Please provide any additional information below.

Getting following message:
PHP-Calendar

Error
Secret token mismatch. Possible request forgery attempt.

Backtrace

#0 
/hermes/bosweb/web126/b1266/d5.user/public_html/calendar/includes/calendar.php(7
19): soft_error('Secret token mi...')
#1 
/hermes/bosweb/web126/b1266/d5.user/public_html/calendar/includes/event_submit.p
hp(70): verify_token()
#2 
/hermes/bosweb/web126/b1266/d5.user/public_html/calendar/includes/calendar.php(6
79) : eval()'d code(1): event_submit()
#3 
/hermes/bosweb/web126/b1266/d5.user/public_html/calendar/includes/calendar.php(6
79): eval()
#4 
/hermes/bosweb/web126/b1266/d5.user/public_html/calendar/includes/calendar.php(6
29): do_action()
#5 /hermes/bosweb/web126/b1266/d5.user/public_html/calendar/index.php(75): 
display_phpc()
#6 {main}

Original issue reported on code.google.com by Miche...@gmail.com on 28 Jun 2012 at 7:03

GoogleCodeExporter commented 8 years ago
Do you have cookies enabled? It won't work, if not. Other than that, maybe the 
session expired? I just committed some code to prevent the second one, and I 
reworked the token code a little bit. If you're still having problems, try 2.0 
beta 11 when it's out.

Original comment by sproctor@gmail.com on 21 Jul 2012 at 10:03

GoogleCodeExporter commented 8 years ago
same error do u find any solution?

Original comment by desarrol...@itesa.edu.mx on 18 Feb 2013 at 11:55

GoogleCodeExporter commented 8 years ago
Check the permissions for your php session variable folder ( usually 
/var/lib/php/session ) and make sure your web server has access

Original comment by kryngled...@gmail.com on 12 Apr 2013 at 6:59

GoogleCodeExporter commented 8 years ago
Added kryngledaly's response to the FAQ. Closing this since there was no 
response from the original reporters.

Original comment by sproctor@gmail.com on 22 Apr 2013 at 9:37

GoogleCodeExporter commented 8 years ago
I'm getting the same error 
Secret token mismatch. Possible request forgery attempt.
Backtrace

#0 /var/www/html/calendar/includes/calendar.php(727): soft_error('Secret token 
mi...')
#1 /var/www/html/calendar/includes/user_create.php(83): verify_token()
#2 /var/www/html/calendar/includes/user_create.php(30): process_form()
#3 /var/www/html/calendar/includes/calendar.php(686) : eval()'d code(1): 
user_create()
#4 /var/www/html/calendar/includes/calendar.php(686): eval()
#5 /var/www/html/calendar/includes/calendar.php(632): do_action()
#6 /var/www/html/calendar/index.php(85): display_phpc()
#7 {main}

Release : 2.0.8

Original comment by ka...@ipsism.co.jp on 1 Oct 2014 at 11:37

GoogleCodeExporter commented 8 years ago
Getting the same error when trying to create users.

Error
Secret token mismatch. Possible request forgery attempt.

Backtrace

#0 /var/www/vhosts/12avearts.org/httpdocs/calendar/includes/calendar.php(727): 
soft_error('Secret token mi...')
#1 
/var/www/vhosts/12avearts.org/httpdocs/calendar/includes/user_create.php(83): 
verify_token()
#2 
/var/www/vhosts/12avearts.org/httpdocs/calendar/includes/user_create.php(30): 
process_form()
#3 /var/www/vhosts/12avearts.org/httpdocs/calendar/includes/calendar.php(686) : 
eval()'d code(1): user_create()
#4 /var/www/vhosts/12avearts.org/httpdocs/calendar/includes/calendar.php(686): 
eval()
#5 /var/www/vhosts/12avearts.org/httpdocs/calendar/includes/calendar.php(632): 
do_action()
#6 /var/www/vhosts/12avearts.org/httpdocs/calendar/index.php(89): display_phpc()
#7 {main}

Original comment by mapple...@gmail.com on 2 Oct 2014 at 5:50

GoogleCodeExporter commented 8 years ago
I cannot reproduce this. If you give your browser name and version, mysql 
version, and php version, it might help. Perhaps look at the phpc_logins table 
in the database. Are there any additional steps to reproduce this? Does it 
happen every time? What if you log out then back in?

Original comment by sproctor@gmail.com on 2 Oct 2014 at 6:15