Mac Chrome / Invalid Security token

Douglas · April 6, 2014, 11:20pm

Hi,

I thought this was a problem due to stale security and session cookies, but now I'm not so sure. On Mac Chrome I've seen and had reported a problem where when attempting to edit an asset the user is confronted with an invalid security token notice:

MySource Notice
File: [SYSTEM ROOT]/core/include/backend.inc Line: 1504
Message: Invalid security token

Our authentication is using the LDAP bridge, with the apache remote user value being used to determine the current user (it's set via a process which works well locally).

The problem seems to be specific to Chrome on the Mac - using Firefox the problem doesn't occur. I don't think we've seen the problem on Win Chrome.

Anyone else seen something like this?

Bart · April 7, 2014, 8:01am

Not sure, what version of Matrix is this happening on? And is this in _admin or _edit?

Also, have you tried clearing your cookies for the matrix domain and then restarting chrome and trying again?

fuzzi81 · April 7, 2014, 11:22am

We had this too. We got it patched quite a while ago with 4.10.4

It’s a bug.

fuzzi81 · April 7, 2014, 11:23am

We are now though on 4.18.0

Douglas · April 10, 2014, 2:48am

Not sure, what version of Matrix is this happening on? And is this in _admin or _edit?

Also, have you tried clearing your cookies for the matrix domain and then restarting chrome and trying again?

v4.18.2

I've seen it on _admin, I think the user who reported it was on an _edit url.

Restarting Chrome was one of the actions I had the user try before we found that Firefox worked ok.

fuzzi81 · April 10, 2014, 11:20am

Yes we had this on _edit urls as well. Though we haven’t seen it pop up since. Might be time to check the logs you have me wondering!