Post Install and setup config session error message displayed after login about opendocman HOT 10 OPEN

@caugheygm If you would like, there is a branch (issue-313-csrf-magic) that switches out the CSRF library with a different one. The old one always seemed grumpy so wondering if the changes in this branch might resolve your issues.

from opendocman.

What version of OpenDocMan are you using?

from opendocman.

What version of OpenDocMan are you using?

OpenDocMan v 1.4.4

from opendocman.

@caugheygm I just performed a test installation on a hosting system and using a folder-based URL like you did I was able to install and then login without any issues.

The place where the base_url is computed is in functions.php line 881.
Add this line after line 890:
sprintf("%s://%s", $proto, $_SERVER['HTTP_HOST'].dirname($_SERVER['REQUEST_URI']);exit;

Try to login again and let me know the output.

from opendocman.

Good morning,
I inserted your line of code at line 891 of file 'functions.php' and tried it again. This experiment shows no error message but no page either just blank screen. I then reopened 'functions.php' and commented out your line of code to see what happens. The output shows the same error message as before with no other output.

from opendocman.

Sorry, that line is missing echo:

echo sprintf("%s://%s", $proto, $_SERVER['HTTP_HOST'].dirname($_SERVER['REQUEST_URI']);exit;

from opendocman.

@caugheygm If you would like, there is a branch (issue-313-csrf-magic) that switches out the CSRF library with a different one. The old one always seemed grumpy so wondering if the changes in this branch might resolve your issues.

Hi
I have the same issue and resolved with your code.
but your code have a mistake and right code is:
echo sprintf("%s://%s", $proto, $_SERVER['HTTP_HOST'].dirname($_SERVER['REQUEST_URI']));exit;

from opendocman.

@caugheygm If you would like, there is a branch (issue-313-csrf-magic) that switches out the CSRF library with a different one. The old one always seemed grumpy so wondering if the changes in this branch might resolve your issues.

Hi
I have the same issue and resolved with your code.
but your code have a mistake and right code is:
echo sprintf("%s://%s", $proto, $_SERVER['HTTP_HOST'].dirname($_SERVER['REQUEST_URI']));exit;

@sarazavi Yes, typo there, thanks. Did the issue-313-csrf-magic branch resolve your problem?

from opendocman.

@caugheygm If you would like, there is a branch (issue-313-csrf-magic) that switches out the CSRF library with a different one. The old one always seemed grumpy so wondering if the changes in this branch might resolve your issues.

Hi
I have the same issue and resolved with your code.
but your code have a mistake and right code is:
echo sprintf("%s://%s", $proto, $_SERVER['HTTP_HOST'].dirname($_SERVER['REQUEST_URI']));exit;

@sarazavi Yes, typo there, thanks. Did the issue-313-csrf-magic branch resolve your problem?

Yes. This line resolved my problem.

from opendocman.

Hi Stephen, sorry about just getting back to you this slow, I have an update regarding my issue. After about a dozen installs with OpenDocMan-1.4.4 and having the same error message "403 Access Forbidden by CSRFProtector!" every time it's now working just fine. I have no explanation for this. I did another fresh install in preparation for adding your revised code string and trying again. However, this last time I did the auto-installation, did the initial admin login and edited the configuration file and then logged off. Same process I'd done all the other attempts.

Before editing 'functions.php' I decided to try and logon again and then like magic OpenDocMan worked and has kept on working without any issues. Go figure...
If anything goes wrong down the road I'll edit that code string in and drop you a note as to the results. Maybe I should just edit it in right now?
Thanks, Greg

from opendocman.