CSRF Token Mismatch error?

poornachander · ‎10-30-2015

Any idea about the following error message keep occuring

Preventing auto-resubmit for user: xxxxxxxxxx after reaching max count for CSRF token mis-matches!: no thrown error

poornachander · ‎12-01-2015

making the property glide.security.csrf.strict.validation.mode to False worked.

View solution in original post

sergiu_panaite · ‎10-30-2015

If it's not defined then by default (in Fuji) we are giving the error after 50 re-submits.

Is this happening on log in phase or on other pages as well ?

Regards,

Sergiu

poornachander · ‎10-30-2015

login page...& others too

a popup appears repeatedly saying your session expired, on clicking cancel several times...it allows to home page and other pages throwing up the error on top of the page: Preventing auto-resubmit for user: xxxxxxxxxx after reaching max count for CSRF token mis-matches!: no thrown error

and dialog appears again and again...

sergiu_panaite · ‎10-30-2015

Unfortunately I don't know what else you could check. You should open an incident with ServiceNow as we need to have a look at the instance.

Regards,

Sergiu

Friedrich Gehri · ‎12-07-2020

Hi @sergiu.panaite ,
what is the value of the property "csrf.token.fail.count"? I cannot find it in our system. The only system properties related to csrf are:

glide.security.csrf.strict.validation.mode

glide.security.csrf_previous.allow

glide.security.csrf_previous.time_limit

glide.security.use_csrf_token

Best,

Friedrich

poornachander · ‎10-30-2015

Thanks very much Sergiu Panaite