Comments (7)
when I delete a key, I will be redirected to a 404 page which path is "http://myDomian/bad%20csrf%20token".
me too
from phpredisadmin.
also, if you have change your phpRedisAdmin/ directory to other things, will be redirect to "bad csrf token",,,
from phpredisadmin.
and view frame can not show any contents, because of "header('X-Frame-Options: DENY');", I have to add "Header always set X-Frame-Options "sameorigin"" to .htaccess
from phpredisadmin.
My bad. I have just released a fix for sameorigin
. Please upgrade to 1.16.1
and try again.
I don't really use this project anymore, but there were a bunch of security issues reported that I tried to fix. I tested it locally and everything worked fine. But it seems like with other setups things break.
For the bad csrf token
error. What version of PHP are you using and what does your session setup look like?
The CSRF code uses PHP sessions.
It does check session_status() !== PHP_SESSION_DISABLED
, but I guess something else goes wrong?
from phpredisadmin.
My bad. I have just released a fix for
sameorigin
. Please upgrade to1.16.1
and try again.I don't really use this project anymore, but there were a bunch of security issues reported that I tried to fix. I tested it locally and everything worked fine. But it seems like with other setups things break.
For the
bad csrf token
error. What version of PHP are you using and what does your session setup look like?
The CSRF code uses PHP sessions.
It does checksession_status() !== PHP_SESSION_DISABLED
, but I guess something else goes wrong?
I use PHP7.4.
I have updated it to 1.16.1.
But it doesn't work.
So I execute chmod -R 777 phpRedisAdmin
, MY GOD, it works.
Later I changed the permission back to 755, it still works.
So I guess the reason is PHP doesn't have the permission to create session files on my server.
And I want to where PHP saves the sessions.
from phpredisadmin.
That depends on how you have configured sessions on your server.
See: https://www.php.net/manual/en/session.configuration.php#ini.session.save-path
from phpredisadmin.
@v012345 , Check session.cookie_path
value at your php.ini.
It must contain /
or be commented
from phpredisadmin.
Related Issues (20)
- 1.14 version breaks under PHP<7 HOT 5
- 'bad csrf token' appears when the primary key is deleted HOT 2
- bug-web HOT 7
- Arm64 docker image HOT 3
- Why no tags for new versions? HOT 2
- reJSON HOT 2
- .htaccess HOT 1
- Uncaught Predis\Connection\ConnectionException: Error while reading line from the server. HOT 6
- Doesn't work in Cluster Mode HOT 3
- Docker secrets HOT 5
- Please support semantic versioning HOT 1
- Unable to delete keys with comma(s) HOT 7
- phpRedisAdmin does not support arm64v8 architectures HOT 4
- Feature Request - Support TLS HOT 5
- Deprecated: Using ${var} in strings is deprecated
- php 8.2 quirks HOT 1
- Can not connect redis localhost via docker bridge0 HOT 1
- Show number of keys without explicitly displaying them
- sites:get_sites HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from phpredisadmin.