[BlueOnyx:27057] Re: CSRF token feature breaks install on latest 5209R

Michael Stauber mstauber at blueonyx.it
Sun Jun 16 00:21:03 -05 2024 

Hi Herbert,

> Is there a way to turn off the BlueOnyx_CSRF_token from the command line?

Yes, you can do so via CCEclient:

[root at 5209r ~]# /usr/sausalito/bin/cceclient
100 CSCP/0.99
200 READY
find System
104 OBJECT 1
201 OK
get 1
102 DATA productBuild = "5209R"
102 DATA NAMESPACE = ""
102 DATA productIdentity = "20210202"
102 DATA csrf_protection = "1"
102 DATA CLASSVER = "1.2"
102 DATA isRegistered = "0"
102 DATA csrf_regenerate = "0"
102 DATA CLASS = "System"
102 DATA gateway = ""
102 DATA GUIredirects = "1"
102 DATA csrf_expire = "7200"
102 DATA serialNumber = "5982477b-4364-49d3-aa4c-c8a49425da80"
102 DATA domainname = "smd.net"
102 DATA extra_ipaddr_IPv6 = ""
102 DATA productName = "BlueOnyx 5209R"
102 DATA productBuildString = "build 20210202 for a 5209R in en_US"
102 DATA gateway_IPv6 = ""
102 DATA nw_update = "1617838073"
102 DATA extra_ipaddr = "&208.77.151.207&"
102 DATA GUIaccessType = "HTTPS"
102 DATA isLicenseAccepted = "1"
102 DATA OID = "1"
102 DATA productLanguage = "en_US"
102 DATA productSerialNumber = ""
102 DATA console = "0"
102 DATA IPType = "VZBOTH"
102 DATA productVendor = ""
102 DATA dns = "&8.8.8.8&"
102 DATA hostname = "5209r"
102 DATA locales = "&en_US&da_DK&de_DE&es_ES&fr_FR&it_IT&ja_JP&nl_NL&pt_PT&"
201 OK
set 1 csrf_protection = "0"
201 OK

Explanation:

As "root" start /usr/sausalito/bin/cceclient

In it type "find System" and hit return.

That will report the Object ID of the System object like this:

104 OBJECT 1

So in my case it is the Object with the ID 1. Yours could be a different 
number.

Run a "GET 1" to see what key/value pairs the System object has. 
Somewhere in that output you will see this:

102 DATA csrf_protection = "1"

That's what we're looking for. So you now know that they key is named 
"csrf_protection" and that it has the value "1". To change it to "0" run 
this:

SET <OID> csrf_protection = "0"

Replace <OID> with the Object ID of your System object that we obtained 
via "Find System".

When it goes well, cceclient will report this back:

201 OK

You can then press CTRL+C to exit cceclient and the GUI has 
CSRF-protection disabled.


-- 
With best regards

Michael Stauber

More information about the Blueonyx mailing list