Problem: csrf The token validation is invalid
Hi, I have developed a procedure with scriptcase 8
Apache Version: Apache / 2.4.17 (Win32) OpenSSL / 1.0.2d PHP / 5.5.30
The procedure can be reached via the intranet VPN
https://site_name.dominio.it/tvrad
And in SSL protocol mode
https: // site_name.domain.it-ssl/tvrad
At the beginning, it requires the user and password to be entered.
In both methods everything works perfectly.
Having also available version 9, I decided, through the conversion procedure made available by scriptcase, to convert the project from version 8 to 9.
I accordingly updated the production environment to the version:
Apache Version: Apache / 2.4.25 (Win32) OpenSSL / 1.0.2j PHP / 7.0.15.
I am using 32bit scriptcase version 9.5.003 with php 7.0.
In an intranet VPN environment, everything works.
I noticed, however, that when you log in with SSL protocol, once you have entered the user and password, the message is displayed:
CSRF: The CSRF token validation is invalid
What can it depend on? When I was using version 8 I didn’t have this problem.
If I don’t solve this problem I can’t migrate all procedures to scriptcase 9.
Thank you in advance for any support.
Massimo