Non-google users need to login twice due to CSRF error

camkashani · February 9, 2022, 11:39am

I am using flask and python3 to make my apps.

During testing on localhost on a windows pc, there were no issues with login.

After deploying on a Linode server ubuntu 20.04 there is an error on the first login attempt made by users.

Non-google users need to login twice. The first login attempt results in the following error: Mismatching_State: Csrf Warning! State Not Equal In Request And Response. I am using the auth0 dev keys, though I do not think this should make any difference.

camkashani · February 10, 2022, 4:25pm

An update to this, I removed the google-oauth option on the app and this did not solve the problem.

bhavinnor13 · April 26, 2023, 9:13am

this is some error which only occurs when you deploy your code on a linux server I use Contabo and on it I got CSRF error

but on localhost it works
and I deployed my site on render.com it worked no csrf error

PaaS platform have no issue with this
but if you use a linux server there comes a problem.
If your issue was fixed let me know

Topic		Replies	Views
OmniAuth::Strategies::OAuth2::CallbackError (csrf_detected \| CSRF detected) Help auth0 , csrf	4	14541	January 7, 2020
OperationalError at /login/auth0 Help	1	3286	December 15, 2019
Csrf_detected in SP initiated login Help login	2	1663	August 3, 2022
403 Client Error: Forbidden for url {domain}/oauth/token Help auth0 , login	5	4826	February 9, 2021
Introduction to Django 3.0 - Building, Authenticating, and Deploying - Part 2 Blog Discussions django	39	7313	March 25, 2022

Non-google users need to login twice due to CSRF error

Related Topics