发表新帖
发表新帖

rails csrf validation in firefox

后端 未结
关注
1 1887
情话喂你
情话喂你 2021-01-13 15:53

I have a site created with Rails using Devise for authentication. It works perfectly fine in Chrome, but in Firefox I cannot log in. All I can see is a message in log:

相关标签:
1条回答
  • 盖世英雄少女心
    2021-01-13 16:13

    I had exactly the same problem. Login was working in Chrome and not in FF. The problem was not related to CSRF since I commented out protect_from_forgery and tried to signin but I wasn't allowed to. The only difference was that the warning message disappeared.

    After some debugging I found out that the problem is related to session and :domain => :all setting for the session store.

    MyApp::Application.config.session_store :cookie_store, key: '_myapp_session', :domain => :all

    After I removed :domain => all, I was able to login using Firefox. Hope that this will help someone even though the answer arrives two months late.

    0 讨论(0)
 看不清?
提交回复
热议问题