[BlueOnyx:24826] Re: 5209 Cannot enable Api // BlueOnyx_CSRF_token is unknown

Fungal Style wayin at hotmail.com
Tue Mar 16 16:14:18 -05 2021 

Hi Michael,

Thanks, I was beginning to wonder also as I setup a 5210r and also tried a 5209r as I was getting the same thing but was yet to post as I had a few other pressing items on my plate, was thinking of trying the suggestion you made but did not get round to it yet, at least I know it is not just me and thanks for the update and prompt reply also.

Regards
Brian

On 17/3/21, 8:10 am, "Blueonyx on behalf of rordonez at xnet.com.mx" <blueonyx-bounces at mail.blueonyx.it on behalf of rordonez at xnet.com.mx> wrote:

    Thank you for the prompt answer,
    Did try that too, 

    ***With CSRF Disabled We get the following error;

    Sorry, an internal server error occurred. The attribute ci_csrf_token is
    unknown. Please visit http://BlueOnyx.it/ for technical info.

    What we tried:
    Restart cced and admserv :
    systemctl restart cced.init
    systemctl restart admserv

    Maybe missed something, this happens the same on all our virtual 5209
    Nginx is enabled ,

    regards

    Rodrigo O
    Xnet

    -----Mensaje original-----
    De: Blueonyx <blueonyx-bounces at mail.blueonyx.it> En nombre de Michael
    Stauber
    Enviado el: martes, 16 de marzo de 2021 12:25 p. m.
    Para: blueonyx at mail.blueonyx.it
    Asunto: [BlueOnyx:24824] Re: 5209 Cannot enable Api // BlueOnyx_CSRF_token
    is unknown

    Hi Rodrigo,

    > To report that on all of our 5209 fully yummed servers we cannot enble 
    > de
    > API:
    > 
    > The error received on all of them is the following:
    > "Sorry, an internal server error occurred. The attribute 
    > BlueOnyx_CSRF_token is unknown. Please visit http://BlueOnyx.it/ for
    technical info."

    Sorry, a this time CSRF and API usage are mutually exclusive. So if you want
    to use the API, you have to turn off CSRF in "Server Management" /
    "Maintenance" / "Server Desktop".

    As is the CSRF functionality we use is the one that ships with CodeIgniter
    and it doesn't have provisions to exclude certain IPs from CSRF.

    Eventually I will need to extend, augment or replace that function with one
    that takes the "API Host(s)" settings into account.

    --
    With best regards

    Michael Stauber
    _______________________________________________
    Blueonyx mailing list
    Blueonyx at mail.blueonyx.it
    http://mail.blueonyx.it/mailman/listinfo/blueonyx

    _______________________________________________
    Blueonyx mailing list
    Blueonyx at mail.blueonyx.it
    http://mail.blueonyx.it/mailman/listinfo/blueonyx

More information about the Blueonyx mailing list