Hi, When cookies are disabled in browser, doing a controller post with csrf return a 500 error, which seems to be logical. But i can't find where and when in the flow i can catch that cookies are disabled. Putting log debug in front off controller indicates that nothing entered in controller.