[BlueOnyx:25751] Re: CSRF mismatch: The action you have requested is not allowed.
kmrichardson at rogers.com
kmrichardson at rogers.com
Fri Nov 25 17:10:12 -05 2022
As you suggested
I SSH'd in to the machine
Ran this
echo "Find System"|/usr/sausalito/bin/cceclient|grep ^104|awk '{ print "SET
" $3 " csrf_protection = 0"}'|/usr/sausalito/bin/cceclient
[root at lists ~]# echo "Find System"|/usr/sausalito/bin/cceclient|grep
^104|awk '{ print "SET " $3 " csrf_protection =
0"}'|/usr/sausalito/bin/cceclient
100 CSCP/0.99
200 READY
201 OK
202 GOODBYE
And still get this when I go to the wizard
An Error Was Encountered
CSRF mismatch: The action you have requested is not allowed.
-----Original Message-----
From: Blueonyx <blueonyx-bounces at mail.blueonyx.it> On Behalf Of Michael
Stauber
Sent: November 25, 2022 4:21 PM
To: blueonyx at mail.blueonyx.it
Subject: [BlueOnyx:25749] Re: CSRF mismatch: The action you have requested
is not allowed.
Hi Keith,
> Just did 2 fresh install of 5210R and I've faced with this again
>
> CSRF mismatch: The action you have requested is not allowed.
>
> On two different fresh installs
>
> Just thought I would let you know Michael
This is how it's supposed to be: Upon a fresh install of BlueOnyx 5210R CSRF
is disabled automatically until you finish the web based setup wizard. Then
it gets turned on automatically. It protects both GET and POST requests.
Where did the error happen? During the web based initial setup or past it?
On the Login page? Or past it?
Anyway: If you want, you can turn off CSRF protection this way from SSH as
root. This goes all into one line:
echo "Find System"|/usr/sausalito/bin/cceclient|grep ^104|awk '{ print "SET
" $3 " csrf_protection = 0"}'|/usr/sausalito/bin/cceclient
--
With best regards
Michael Stauber
_______________________________________________
Blueonyx mailing list
<mailto:Blueonyx at mail.blueonyx.it> Blueonyx at mail.blueonyx.it
<http://mail.blueonyx.it/mailman/listinfo/blueonyx>
http://mail.blueonyx.it/mailman/listinfo/blueonyx
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20221125/76638637/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 42699 bytes
Desc: not available
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20221125/76638637/attachment.png>
More information about the Blueonyx
mailing list