Uploaded image for project: 'Sakai'
  1. Sakai
  2. SAK-30083

Sakai_CSRF_token not generated when logging in via /direct web service session.

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: OPEN
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 10.0
    • Fix Version/s: None
    • Component/s: Web Services
    • Labels:
      None

      Description

      Steps to reproduce:
      When using the `/direct/session` endpoint to create a session and log a user in, the `sakai_csrf_token` is not generated. A user can navigate to web pages, but is unable to submit forms which need a CSRF token.

      Expected Behaviour:
      A user should have a CSRF token assigned when logging in via web services

        Gliffy Diagrams

          Zeplin

            Attachments

              Activity

                People

                Assignee:
                Unassigned Unassigned
                Reporter:
                alastair.hendricks Alastair Hendricks
                Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                  Dates

                  Created:
                  Updated:

                    Git Integration