Search box on the demo has broken CSRF
Closed this issue · 2 comments
ellieayla commented
- Open https://beres-online.herokuapp.com/beres/ in iOS Safari
- Type "Amazon" and hit return
- Error:
Forbidden (403)
CSRF verification failed. Request aborted.
You are seeing this message because this site requires a CSRF cookie when submitting forms. This cookie is required for security reasons, to ensure that your browser is not being hijacked by third parties.
If you have configured your browser to disable cookies, please re-enable them, at least for this site, or for 'same-origin' requests.
feldrim commented
Same with Chrome on Android.
josephlane commented