[BUG] csrf token is invalid on login page

Question

[BUG] csrf token is invalid on login page

Closed this issue 2 years ago · 3 comments

PavanPatro-Innovaccer commented 2 years ago

Describe the bug
We are receiving CSRF token invalid error while accessing the aidBox using the client credentials. The error says " CSRF token is invalid . This error may occur when multiple login pages were opened . Please, try to log-in again"
The behaviour is erratic though and causing a lot of issues. Have attached a screenshot for your reference .

Severity
Critical

Steps to reproduce the behavior:
login to https://roche-develop-fhir.innovaccer.net/
with client credentials :
Username /password:

-->

Expected behavior
To have a seamless login experience.

Screenshots

Versions:

Aidbox image version:
Edge

Answer 1 · 2022-10-12T13:40:53.000Z

hello, @PavanPatro-Innovaccer. it looks like you forgot to setup encryption key on that box. please follow steps described here and let us know if it fixed this issue for you

Answer 2 · 2022-10-12T15:24:39.000Z

@PavanPatro-Innovaccer we moved second bug to separate issue #542

Answer 3 · 2022-10-17T15:35:19.000Z

Hi @PavanPatro-Innovaccer,
Do you have more than one replica for this Aidbox instanсe? If yes, you have to set up BOX_AUTH_KEYS_SECRET env to fix the issue