Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
QUESTION CSRF detected!
#8
(2016-02-24, 03:15:32)shawn_a Wrote: Most of that is wrong, this is GSs csrf detection, it has nothing to do with an actual csrf or server or browser interception.
It simply means that the nonce we sent on the page has expired or no longer matches the one we generate, a nonce is not really a nonce in GS since we use stateless sessions, but is calculated based on some predictable stuff. ( a nonce is a use once token, to prevent action replays or hijacks, ours is not really a nonce but a nonce good for 1-2 hours )
...
Thank you for the additional information.

However, it has happened to me following a recent edit so at least it does not appear to always be a timout... I do on occasion have lengthy editing sessions where I am researching material, so those occasions may be a timeout. I am going to disable it for a while and see what happens. If something is being injected, it should be immediately recognizable. (I might add, GS is the only program that has ever given me this error.)

It appears there is a bug but given the stellar performance and stability of GS I don't care - I am very happy with it.
Thanks,
jwzumwalt
(\__/)
(='.'=)
(")_(")
Reply


Messages In This Thread
CSRF detected! - by Charpy1 - 2016-02-23, 18:38:27
RE: CSRF detected! - by Bigin - 2016-02-23, 19:03:48
RE: CSRF detected! - by shawn_a - 2016-02-23, 23:05:45
RE: CSRF detected! - by jwzumwalt - 2016-02-24, 01:57:14
RE: CSRF detected! - by Bigin - 2016-02-24, 02:12:59
RE: CSRF detected! - by jwzumwalt - 2016-02-24, 03:06:28
RE: CSRF detected! - by shawn_a - 2016-02-24, 03:15:32
RE: CSRF detected! - by jwzumwalt - 2016-02-24, 04:02:48
RE: CSRF detected! - by jwzumwalt - 2016-03-24, 13:37:13
RE: CSRF detected! - by Charpy1 - 2016-02-24, 06:58:16
RE: CSRF detected! - by Bigin - 2016-02-24, 07:19:22
RE: CSRF detected! - by jwzumwalt - 2016-02-24, 09:15:54
RE: CSRF detected! - by shawn_a - 2016-02-24, 07:33:29
RE: CSRF detected! - by Bigin - 2016-02-24, 17:18:20
RE: CSRF detected! - by shawn_a - 2016-02-25, 00:13:36



Users browsing this thread: 4 Guest(s)