Welcome Guest, Not a member yet? Register   Sign In
[4.5.5] Strangeness with CSRF, sessions, AJAX
#2

Follow-up:

As an interesting side note, even if I mask the added header (my configured CSRF), CI still seems to hit on it, process it, and remove it. Like this:

Code:
X-abcThisIsMyCSRFHeaderxyz

It's nowhere to be seen when I dump all headers. And this is before CSRF processing in CI takes place, or at least that what it looks like. I've checked the outgoing request headers, and it's there.

-joho
Reply


Messages In This Thread
RE: [4.5.5] Strangeness with CSRF, sessions, AJAX - by joho - 10-30-2024, 03:24 AM



Theme © iAndrew 2016 - Forum software by © MyBB