iFrame: Attemp to login fails (invalid csrf token)

agarcia17

Hi,

When I open NodeBB through an iFrame using IE 11 and attempt to login, im presented with an "invalid csrf token" error and login fails. But when I try it with Google Chrome, everything works as expected. Anybody have an idea why that is?

PS. I tested on a fresh IE (reseted ALL my settings, including cookies, etc.)

Thanks,
Armando

Julian Lam

Is this only through an IFrame? Regular invocation of NodeBB is fine?

agarcia17

@julian yeah only through iFrame

the request headers look fine, it has x-csrf-token and Cookie (express.side=...)

PitaJ

Sounds like an IE bug to me.

agarcia17

@julian @pitaj any ideas on how to get around it?

PitaJ

@agarcia17 Google is your friend.

Query: IE iframe csrf error

Invalid CSRF token
Bug Reports • • metalkramp

Cannot login
Bug Reports • bug login • • iulian

Problemas con el login nodebb
Bug Reports • • slipknot

invalid operator: $search
Bug Reports • saerch mongodb • • Leonardo Galani

Error: Invalid 'X-Frame-Options' header
Bug Reports • error • • tomar

iFrame: Attemp to login fails (invalid csrf token)

Suggested Topics

Invalid CSRF token Bug Reports • • metalkramp

Cannot login Bug Reports • bug login • • iulian

Problemas con el login nodebb Bug Reports • • slipknot

invalid operator: $search Bug Reports • saerch mongodb • • Leonardo Galani

Error: Invalid 'X-Frame-Options' header Bug Reports • error • • tomar

Invalid CSRF token
Bug Reports • • metalkramp

Cannot login
Bug Reports • bug login • • iulian

Problemas con el login nodebb
Bug Reports • • slipknot

invalid operator: $search
Bug Reports • saerch mongodb • • Leonardo Galani

Error: Invalid 'X-Frame-Options' header
Bug Reports • error • • tomar