0

System Info:

  • Ubuntu 18.04.1
  • Apache 2.4.29
  • PHP 7.2.19

Server always reports that a csrf token on a login form is invalid. I have followed the symfony guide a couple Symfony guides https://symfony.com/doc/current/security/csrf.html#csrf-protection-in-login-forms and https://symfony.com/doc/current/security/form_login_setup.html

I have searched all over and cannot seem to find things to look at. I have check all sorts of file permissions and the only thing I can think of is to use php version 7.1 where i know it works.

Here you can see the token generated on the /login and
enter image description here

And the same data in authenticator enter image description here

1 Answer 1

3

PHP did not have write access to its session storage.

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Not the answer you're looking for? Browse other questions tagged or ask your own question.