New session on every refresh
simon_at_evolutednet - 3 months ago
Hello. I've been having an intermittent problem recently using Pyro where I can't log into the CMS because the CSRF token check fails. After a bit of investigation, it looks like something triggers an odd state where new sessions are created for every refresh losing the link between user and token. The sessions are stored in the database and I can see a new session appear for every refresh so there's no problem writing the session on the server. This solves itself after a short time.
Has anyone seen anything like this? I'm guessing it's a Laravel issue but wanted to ask here first. Using Pyro 3.4.