@crazycells Yeah it could be since each topic page calls the browsing users plugin. Give it a try with fewer tabs if it stops happening that's probably why.
Thanks a lot 👍
@mattdjuk No problems.
Further to this - I can now get the site to show without the session error popup, but only when I use an incognito window. So far Chrome remains stuck with the pop up when I use it normally.
@mattdjuk I've had this exact same issue with Chrome. Does it still happen if you clear the cache completely, or if you press F12, then select the Network tab and select "Disable cache" (as shown below) and then reload the page ?
@phenomlab Unfortunately it doesn't help. I can use Edge to log in to the admin area and it has a load of these errors:
invalid csrf token
Edge is fine, Chrome (normal, incognito) doesn't work and keeps prompting.
@mattdjuk Is the URL specified in
config.json correct, and does it contain any trailing backslashes ?
@mattdjuk Thanks. For clarity, the trailing backslash should not be there. Does the site function as desired when using Edge with no issues from the user perspective ? Does anything appear in the logs when the CSRF error is being generated ?
@phenomlab I tried both, but its currently without the /
Edge works fine. I can use the site without issue. Its just Chrome.
The only thing I can see in the admin logs on /admin is this
022-05-24T15:16:43.080Z [4567/165874] - [31merror[39m: POST /logout
invalid csrf token
in the inspect tools in Chrome I see...
nodebb.min.js?v=eau0luijpea:2 POST https://forum.**********.co.uk/logout 403 (Forbidden)
@mattdjuk Can you contact me via PM and share your site URL ? I want to see if I can reproduce the issue in Chrome.
@phenomlab Sure, will do. thanks
@mattdjuk Just checked. This is exactly the same issue I encountered in this post
When you tried this the first time, are you sure you selected the right database ?
@phenomlab I've just run this again. The first refresh, I actually got the screen without the session warning, but then the next time I refreshed, it was back.
Same error in the logs, and everything working fine in Edge.
@mattdjuk Bizarre. I actually get the same issue in Edge when accessing your site.
@phenomlab You're right - as soon as I logged out from Edge, it started doing the same thing.
@mattdjuk There's something else going on here. Happy to help, but will likely need direct access to your site, and the VPS hosting it.
@mattdjuk No. Mine is the same.
I've now set up a completely fresh install on another VM. I have removed the domain for now and I'm running it on the IP address only and its not having similar issues. Once the dns resolves to the new location, I'll try and get it working with the domain.
@mattdjuk And now with the domain name, it doesn't work.
Trying to login, I see /login?error=csrf-invalid
@mattdjuk If the domain name does not resolve to the correct IP address, then yes, I'd expect the CSRF issue to be prevalent.