"CSRF token is not valid" issue on first login

I wasn't sure whether this belongs in Installation (because I encountered the issue immediately after installing) or here, so apologies in advance if I've misfiled this report.

I'm an amateur investigating the possibility of using providence for a community org with a small library. This factfinding work is being done on a Raspberry Pi B+ currently running the following:

Raspbian 4.1479+
Apache 2.4.25
PHP 7.0.33-0+deb9u1 (with curl, dom extensions)
MariaDB 10.1.37 (InnoDB-supporting)
Providence 1.7.5

It appears that the above components installed successfully and I received an administrator account and password from Providence. However logging in fails with a "CSRF token is not valid" message whenever I attempt to log in with these credentials. I've trying clearing cookies from previous attempts, closing and reopening browser windows and disable cookie-blocking on current versions of Chrome, Firefox, Chromium and Edge. As the screenshots suggest, CA is setting cookies on the client end.

In addition of the changes to php configuration suggested in the installation guide, I've tried disabling the options in php.ini which force the use of cookies to track sessions. I've also drastically increased the time limits for PHP to parse and execute scripts, reasoning that my relatively slow machine might not have been processing the CSRF fast enough.



Sign In or Register to comment.