topic Re: Remote Exception Not a valid CSRF token in Expedition Discussions

Remote Exception Not a valid CSRF token

CRIS162 — Wed, 09 Dec 2020 20:41:46 GMT

After performing an update for the expedition beta, and updating the ubuntu OS using apt-get update I was unable to use the expedition tool due to this certificate issue. In expedition internal check I have no status errors that could relate me to the cause of the issue. What are the possible cause and resolutions to this error?

Re: Remote Exception Not a valid CSRF token

azuniga — Wed, 09 Dec 2020 21:14:52 GMT

This is a security measure built into expedition, do you have this same problem in another browser or in incognito mode?

Re: Remote Exception Not a valid CSRF token

Rashawne — Fri, 11 Dec 2020 09:38:49 GMT

Make sure you are using an up-to-date browser.

Make sure your browser accepts cookies.

Depending on your browser settings, you may have to enable them explicitly.

Clear your cache and remove all cookies from your browser. Refresh the page.

Provitalize

Re: Remote Exception Not a valid CSRF token

CRIS162 — Thu, 10 Dec 2020 18:58:20 GMT

Hello,

I have attempted this on many browsers including edge, mozilla, internet explorer, and chrome. Other users have attempted expedition but failed to log in due to the same error received. Are there potential certificate changes we can make to resolve this issue?

Re: Remote Exception Not a valid CSRF token

lychiang — Thu, 10 Dec 2020 19:07:32 GMT

@CRIS162 Trying remove the cookies setting of Expedition in the browser and restart the browser again , you will double click on the "NotSecure"on the URL bar , it will take you to the cookies setting. try to remove all the cookies there.

Re: Remote Exception Not a valid CSRF token

CRIS162 — Fri, 11 Dec 2020 00:20:26 GMT

Clearing the cache as well as any cookies related to this site did not resolve the issue. I attempted resetting my settings on Mozilla with no luck.

Re: Remote Exception Not a valid CSRF token

slp-security — Wed, 26 May 2021 12:51:06 GMT

Hi all,

I installed Expedition in docker mode (deployed ON AWS). From LAN side (via IPSec VPN), no issue... If I use AWS ELB+WAF, so CLIENT->AWS ELB+WAF-> DOCKER+EXPEDITION, I received CSRF Token error... Clearer the cache of the browser doesn't help... Any idea ??

Regards,

Re: Remote Exception Not a valid CSRF token

azuniga — Wed, 26 May 2021 15:19:38 GMT

Hello @slp-security

What about if you change your ELB settings to be a persistent connection?

Re: Remote Exception Not a valid CSRF token

Tom.Fenner — Thu, 25 Aug 2022 22:02:29 GMT

Did you ever figure this out? I've got this issue on a new install using a on prem vm with a direct connection to it in the browser. Clearing cache/cookies has no effect.

Re: Remote Exception Not a valid CSRF token

Christopher.Felix — Thu, 25 Aug 2022 22:26:47 GMT

Unfortunately no, I pivoted away from using expedition. However, rebuilding the VM or fixing the cert error may be the solution