CSRF token and cookie are the same, but unable to submit form |
[eluser]Unknown[/eluser]
I have csrf protection enabled and use form_open() to do create my form. It was submitting fine before until an hour ago when submitting it gave me a "The action you have requested is not allowed." error. I was on #codeigniter and someone tried to help me debug by placing log_message() inside csrf_verify() in system/libraries/Security.php but couldn't figure out what was going on. Here's a pastie of part of the log file - http://d.pr/MnBT. It says in the end that token doesn't exist, but here is a pastie of what is in the DOM and the cookie - http://d.pr/jk4d, which look exactly the same. Help please? |
Welcome Guest, Not a member yet? Register Sign In |