Error message "CSRF Violation occurred"

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Article Type: General
Product: Aleph
Product Version: 21

Problem Symptoms:
Adding the token validation with "TOKEN-VALIDATION=Y" in $alephe_tab/tab100 and updating the required html-files with the $9900 place holder as hidden parameter does not bring the expected result but runs into error message "CSRF Violation occurred. Please re-login into the system." when trying to delete records from My e-shelf or when trying to use the *Renew All* functionality.

Cause:
Configuration

Resolution:
In some of the tables which should be enhanced by a line like ...
<input type=hidden name="token_id" value=$9900>
... according to documentation the line is missing.

Compare your local files with the standard file in a-tree.

Additional Information

CSRF Valuation was implemented in Aleph 21. Please see "Aleph System Librarian's Guide - Web Opac", chapter 25.2

Category: Web OPAC (500) - ALEPH

Subject: ALEPH - 500

Article last edited: 5/19/2014