Home > Mantis Application > Mantis Application Error 2800

Mantis Application Error 2800

I was entering bugs and did one bug report, then followed with another, and got the application error 2800 message. This indicates that the browser is not reloading the page. We have not modified this PHP setting at all and sessions are being stored in the directory. ~0029011 scaranol (reporter) 2011-06-15 12:32 Our PHP version is 5.2.17 and Mantis is at When I click on 'Report Issue', the form loads, but no logging occurs (in Opera). navigate here

Force Refresh doesn't seem to help. ~0021237 jreese (reporter) 2009-03-27 14:22 Last edited: 2009-03-27 14:23 I've attached a patch that allows you to disable the form security validation. Cheers Notes Related Changesets MantisBT: master 10040dee Timestamp: 2009-03-27 18:16:51 Author: jreese [Details] [Diff] Fix 0009999: allow form security to be disabled for sites that use 'bad' proxy servers. We're using Mantis 1.2.3 timeout mantis share|improve this question asked Dec 7 '12 at 10:32 Dan Baronet 111 Are you using SSL? –Robert Munteanu Dec 7 '12 at 12:15 Seems also that the issue should happen when, for example, switching from a project to another. https://www.mantisbt.org/bugs/view.php?id=12381

UV lamp to disinfect raw sushi fish slices Converting Game of Life images to lists What version of Python do I have Ubuntu 16.04? Did you check session.save_path in php.ini and write access for the directory? ~0029010 jmaas (reporter) 2011-06-15 11:56 The default RPM install has setup this directory with the correct permissions. I put log_event calls in bug_report_page.php and in form_api.php. We apologize for the inconvenience.

It's provoked when a user of an old version (in my case 1.0.6) uses the 1.1.4 version without having clean the internet cache. It *could* be a php-related problem. As a workaround, the Administrator can Increase the value of session.gc_maxlifetime Set $g_form_security_validation = OFF. However, I *cannot* replicate the issue with any other browser, including Firefox 3, Opera, and IE7; hence my comment above to make sure that you do not have $g_allow_browser_cache set in

It took me quite some time to write the note for the first time, maybe 15 minutes, and after I retyped it in maybe 1-2 minutes the second time, I got We have updated a 1.1.1 installation to 1.1.6. This could be caused by a session timeout, or accidentally submitting the form twice. and of course try $g_form_security_validation = OFF (or are there obvious reasons not to do it?) if anything will go wrong - we revert the changes.

TagsNo tags attached.Attached Files Relationships has duplicate0011837closeddhxError #2800 on trying to submit an issue has duplicate0012015closeddhxError message that the form has been sent twice has duplicate0012169closeddhx"Add Note" issues ERROR_FORM_TOKEN_INVALID has duplicate0012233closeddhxInvalid mod - core.php [Diff] [File] MantisBT: master 14d3d357 Timestamp: 2008-11-24 14:11:42 Author: jreese [Details] [Diff] Revert c6821f71, fix 0009754, 0009869, 0009323 by adding Last-Modified headers to match Expires. mt_rand() ); } switch ( $g_show_action ) { case BOTH: if ( ( null !== $p_user_id ) && ( ON == user_pref_get_pref( $p_user_id, 'advanced_' . $p_action ) ) ) { return It seems that it jumps back to project A (with also the same #2800 problem).

All tickets and forums posts point to a proxy caching issue, but we are not behind one. These bug was previously opened as 0009691, but i did not find the way to reopen this one. Additional InformationFull path: /www/alefe/www/htdocs/mantis/core/form_api.php Line: 104 Variable Value Type p_form_name manage_proj_user_add string t_tokens Variable Value Type manage_proj_cat_delete Variable Value Type 0 20090406-5ad8a2345caf68bdde035e28639c5c65e606673e string 1 20090406-df625c8c9df28b72ec07ebe0b9077d99a4739ef8 string 2 20090406-d35b55dec77aacb6ac9ae8d9de296b19b489b823 string manage_proj_cat_add Variable I hit Back (got back the form with all the fields filled in), tried to submit again, and got the error again.

I want to add that it is known MantisBT issue, and there no complex solution at the moment: http://www.mantisbt.org/docs/master-1.2.x/en/administration_guide.html#ADMIN.TROUBLESHOOTING.ERRORS.2800 [^] Error 2800 - Invalid form security token This error may only http://edvinfo.com/mantis-application/mantis-application-error-11.html If I select some other page again (view issues, my view, ...), it jumps back to project B. I think this covers over 95% of all such cases. If I refresh my screen, retype what I wrote originally, and submit again, it goes through.

So when you try to add a note it throws back an error saying your security token was invalid, which is just a fancy way of saying your login timed out. Notes Related Changesets MantisBT: master c6821f71 Timestamp: 2008-11-13 18:39:49 Author: jreese [Details] [Diff] Fix 0009754 by reverting part of issue 0009323: IE6/7 cache too much cousing 2800 errors. Users may also install local tools to avoid loss of form data, e.g. his comment is here Because niw we have to made the trade-off between security ( which was not present in older versions ) and usability for the users.

This issue is very important and it would be great if any solution could be found... (0026899) aiv (administrator) 2013-11-25 19:06 edited on: 2013-11-26 11:17 I fully agree with you and I'm In the sense that it should at least try to grab a new security token if it can before erroring out. ~0024834 liyingm (reporter) 2010-03-21 18:26 Thanks for the reply. It seems it was a problem on our side. ~0021340 skay (reporter) 2009-03-31 09:09 @jreese: I have checked the "error 11" behaviour again.

There you can correct whatever problems were identified in this error or select another action.

I think this will be enough. I try the way of dplinnane but no effect. ~0019969 dirkdatzert (reporter) 2008-11-21 05:19 This error is not resolved. That time, I copied the text and pasted it again right after the error appeared, so in that case I could manage to submit the note. Please click the link in the confirmation email to activate your subscription.

Thanks. ~0019968 pangea (reporter) 2008-11-21 05:03 I get the same situation as dplinnane. sha1( time() . add user 3. weblink has duplicate0010148closeddhxSesssion Timeout has duplicate0013952closedatrolInvalid form security token.

Notes Issue History Date Modified Username Field Change 2011-08-18 08:48 j_schultz New Issue 2011-08-18 08:52 j_schultz Note Added: 0029510 2012-01-31 07:53 vincent_sels Note Added: 0031091 2012-01-31 09:04 dregad Relationship added related Once clean it, the bug did not appear any more. ~0019832 baltun (reporter) 2008-11-10 11:50 may be it will be usefull for developers and users: i've found that if you add I'll test it during the next week and give you a feedback. by hand-crafting the URL (CSRF attack) Expired PHP session In the first two instances, MantisBT's behavior is by design, and the response as expected.

In one project I can't create a new bug entry. So far I haven't been able to get it working again. Why did Fudge and the Weasleys come to the Leaky Cauldron in the PoA? If it is really necessary for some purpose (apart of training the people not to be relaxed), the behavior should be changed so as to preserve user input and allow the

Things like this come up, APPLICATION ERROR #2800 Invalid form security token. mt_rand() ); switch ( $g_show_action ) { case BOTH: if ( ( null !== $p_user_id ) && ( ON == user_pref_get_pref( $p_user_id, 'advanced_' . $p_action ) ) ) { return 'bug_'