Jump to content

Typing in Editor redirect to CSRF link

Allan - TheTechTribe
 Share
Go to solution Solved by stoo2000,

Recommended Posts

Allan - TheTechTribe Explorer

Allan - TheTechTribe

Posted
Posted (edited)

Hi,

We have this particular issue where when you type in editor then it refreshes and the ajax request is CSRF, screenshot below

Could contain: Page, Text, File

redirects to this page
https://portal.thetechtribe.com/community/login/?ref=aHR0cHM6Ly9wb3J0YWwudGhldGVjaHRyaWJlLmNvbS9jb21tdW5pdHkvdG9waWMvMjE3NTktdGhlLXRyaWJhbC1wb3J0YWwtaXMtcmVmcmVzaGluZy1yYW5kb21seS9wYWdlLzMvP2NzcmZLZXk9MzI0M2E3MWViYzE2ZmRhNGRiMGJiYWFiMmUwM2I2ZTUmZ2V0VXBsb2FkZXI9dG9waWNfY29tbWVudF8yMTc1OQ==

And this is the actual URL
https://portal.thetechtribe.com/community/topic/21759-the-tribal-portal-is-refreshing-randomly/page/3/?csrfKey=3243a71ebc16fda4db0bbaab2e03b6e5&getUploader=topic_comment_21759

Got has to do with CSRF?

IPB version is 4.7.15

Edited by Allan - TheTechTribe
Allan - TheTechTribe Explorer

Allan - TheTechTribe

Posted
  • Author
Posted
4 minutes ago, Marc Stridgen said:

That will have nothing to do with the CSRF. Have you tested this without your 3rd party login enabled?

@Marc Stridgen thank you, our 3rd party login would be the WordPress SSO by @stoo2000 , we cannot disable it for now, as we have like thousand of member using this forum, and if we did, they will be logout.

Do you think @stoo2000 has got to do with the plugin WordPress SSO? I could create a support so we can take it there and talk about it.

-Allan

Marc Grand Master

Marc

Posted
Posted

The reality is, you need to rule things out one at a time. I understand what you are saying about the disabling of items, but its an necessity if you want to get to the bottom of issues

  • Solution
stoo2000 Grand Master

stoo2000

Posted
  • Solution
Posted
2 hours ago, Allan - TheTechTribe said:

@Marc Stridgen thank you, our 3rd party login would be the WordPress SSO by @stoo2000 , we cannot disable it for now, as we have like thousand of member using this forum, and if we did, they will be logout.

Do you think @stoo2000 has got to do with the plugin WordPress SSO? I could create a support so we can take it there and talk about it.

-Allan

I created a support ticket for you on my site, please check your email.

 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Invision Community © 2024 IPS, Inc.
×
×
  • Create New...