Session Error / A request has been denied as a potential CSRF attack.

I just installed Mango within a tomcat server :
- Apache Tomcat/7.0.2
- JVM 1.6.0_18-b07

I get popup error windows while browsing within Mango:

- Session Error

Mango log show this error:

"Mango error.jpg" is a print screen
In "log.zip" you will find all Tomcat logs files

Thanks for any help

CRL

Try adding the following parameter setting to the dwr-invoker servlet settings in ...\WEB-INF\web.xml:

<servlet>
<servlet-name>dwr-invoker</servlet_name>
...
<init-param> <-
<param-name>crossDomainSessionSecurity</param-name> <-
<param-value>false</param-value> <-
</init-param> <-
...
</servlet>

(Without the '<-' at the end of those lines, of course; those were meant to indicate the new entry in the file.)

Yes, this solve the problem.

By the way, I notice that the solution was provided in less than 2 hour. I never been accustomed on having so quick support by major automation solution providers...

So Congratulation SteveE.

Regards

Cyril

This message was edited 1 time. Last update was at 24/09/2010 11:06:02

Thanks, Cyril. Glad I could help. BTW, I'm a Mango user like you. I just happened to run across this same issue a few weeks back.