{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 孤傲高冷的网名 的问题《Symfony 3.0.1 CSRF token present but invalid》','https://www.manongdao.com/q-1335297.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I am having this strange issue with a fresh Symfony 3.0.1 installation. I generated a new CRUD Controller with a Form PostType which contains an url and a title. Nothing fancy.
The form is rendered as expected. It contains both my url field and title field. Inside the form the hidden input field _token is also rendered.
When submitting this form, i am getting all the time the following error:
The CSRF token is invalid. Please try to resubmit the form.
So the token is added to the form, it contains a value, i have a constant PHP session cookie value, it is just that this token invalid.
I have searched for other answers but the similar questions are all caused by the absence of a _token input.
This problem also occurs in Symfony 3.0.2/3.0.3.
The bug is also present in 3.0.4.
save_path: ~worked for me.I had the same on env=dev but not on preprod (symfony 4.4)
--Solution--
There was missing sessions dir in the root I have created one then the problem solved.
cheers
I just had a similar issue with Symfony 3.2
After hours, we finally found the issue was related to session.cookie_secure (https):
Our production environment uses https, thus forces cookies to be secured over https. The dev environment used http. After moving the dev from HTTP to HTTPS, problem was fixed.
I'm using Symfony 3.2.1 and it's working on one machine but not the other. No idea why.
@Shrihari his answer led me to the following solution.
My project also has
cookie_secure: true. I updatedconfig_dev.ymland addedcookie_secure: falseto the file.This worked for me.
It seems to be a bug in symfony version >3.0, <3.0.3.
As @yellowmen pointed out, changing the
framework.session.save_pathin theconfig.ymlfixes the problem.I experienced a similar problem with Symfony 4.2 when switching from
devtotestenvironment.I had the following setting in my
framework.yamlfile:Solution:
Removing the
storage_id: session.storage.mock_file-setting solved the problem.Important: You probably have to clear the cache for this to take effect.
For more information about the
storage_id-configuration option also see here.