Loading...
 
[edu.t.o] Users Main Forum

[edu.t.o] Users Main Forum


Sea Surfing (CSRF) detected when deleting a workspace

posts: 32
I got the following message when trying to delete a workspace in tiki 3.0 beta.

Sea Surfing (CSRF) detected. Operation blocked.


I checked my configuration in Admin -> Login
Protect against CSRF with a confirmation step -> unchecked
Protect against CSRF with a ticket -> checked

I had to change the configuration for this

Protect against CSRF with a confirmation step -> checked
Protect against CSRF with a ticket -> unchecked

With both checked it doesn't work either.

Is the configuration we need to delete workspaces secure enough? I pretty much don't know what CSRF is. Sorry.
posts: 158
Noidea myself. Glad you found out how to avoid the problem with CSRF (I only know that it was some way for intruders to get into tiki sites). Ask more info at tiki-devel list, if needed.

Switch Language