Error When Displaying Missing Csrf Token Message

[flangefrog]

Oh noes!

 

Files does not exist: /var/www/blesta/plugins/order/views/client/bootstrap/message.pdt on line 120 in /var/www/blesta/lib/view.php 

 

Printing Stack Trace:

#0 /var/www/blesta/lib/controller.php(197): View->fetch('message', 'client/bootstra...')

#1 /var/www/blesta/app/app_controller.php(0): Controller->partial()

#2 /var/www/blesta/app/app_controller.php(0): AppController->setMessage()

#3 /var/www/blesta/app/app_controller.php(0): AppController->verifyCsrfToken()

#4 /var/www/blesta/plugins/order/order_controller.php(16): AppController->preAction()

#5 /var/www/blesta/plugins/order/order_form_controller.php(38): OrderController->preAction()

#6 /var/www/blesta/lib/dispatcher.php(102): OrderFormController->preAction()

#7 /var/www/blesta/index.php(21): Dispatcher::dispatch('/order/config/p...')

#8 {main}

Is this CORE-1170?

 

URL /order/config/preconfig/domains

Blesta 3.3.0

PHP 5.5.17

[Tyson]

Could you explain what you were doing when you received that message?

[flangefrog]

Could you explain what you were doing when you received that message?

 

Submitting the domain form without a CSRF token.

[Tyson]

CORE-1498

[Cody]

CORE-1498 is closed as Won't Fix.

 

It sounds like you're attempting to submit a form without a CSRF token, which is not allowed. Submit a feature request to add what you're trying to accomplish correctly (recommended), or explicitly exclude the controller and action from CSRF check in /config/blesta.php (not recommended).