Error 403 (Forbidden) in dev instance

jack2 · March 1, 2020, 9:51pm

I’ve just updated my dev instance and I can’t log in anymore.

The debug console says: POST http://localhost:3000/session 403 (Forbidden).

The log file says:

Can't verify CSRF token authenticity.
  Rendering text template
  Rendered text template (Duration: 0.1ms | Allocations: 3)
Filter chain halted as :verify_authenticity_token rendered or redirected
Completed 403 Forbidden in 39ms (Views: 38.2ms | ActiveRecord: 0.0ms | Allocations: 2987)

There are several topics about this issue on Meta, but they all deal with bad nginx settings. I don’t use any reverse proxy, I only use the standard dev instance on Win 10 WSL (puma on localhost:3000).

I’ve reinstalled Discourse entirely, but still the same problem. I tried SiteSetting.force_https = false in the rail console: doesn’t solve the issue.

Any advice?

jack2 · March 3, 2020, 10:00am

Latest git pull solved the issue. Thanks guys.

Topic		Replies	Views
Login - Can't verify CSRF token authenticity Dev	1	2456	March 18, 2016
403 Forbidden error while enabling / disabling theme component Support	3	275	September 14, 2023
Users can't sign in due to 403 error Installation	13	3962	June 8, 2024
Can't Login to Discourse - CSRF Token Authenticity Support	1	3313	June 28, 2017
403 Forbidden on Logins (started after update to latest version) Support	6	3669	November 11, 2016

Error 403 (Forbidden) in dev instance

Related topics