Is it possible for a user to receive the CSRF error when he logs in using two almost identical iPhones, from the same Wifi network, with the same username, simultaneously?
I would think these 2 sessions wouldn't collide... Cheers, Robert-Reinder On May 9, 11:06 am, nederhoed <r.r.nederh...@gmail.com> wrote: > Hi everyone, > > just a few users of our website get an CSRF error when trying to log > on using a mobile device. This behavior only occurs with about 3 out > of 150 users. We have 2 colleagues with the same device (iPhone) of > which one of the two has this problem. The other hasn't. > The user can login using a desktop PC... > > What could be an explanation? > > We have applied all the csrf inclusions (Middleware, RequestContext, > csrf tag in POST forms), yet some users can't log in and get the ugly > CSRF error on their mobile. > > Our website runs Django 1.2.1:http://im.knmp.nl/ > > Fragment form settings.py > MIDDLEWARE_CLASSES = ( > 'django.middleware.common.CommonMiddleware', > 'django.contrib.sessions.middleware.SessionMiddleware', > 'django.middleware.csrf.CsrfViewMiddleware', > 'django.contrib.auth.middleware.AuthenticationMiddleware', > 'django.middleware.doc.XViewMiddleware', > ) > > Any help would be highly appreciated. > > Kind regards, Robert-Reinder > -- -- You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com. To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-users?hl=en.