he folks, im struggeling with 2 identically forms on the same site.
its the sfGuardFormSignin, which is csrf protected. i have this form 2 times on the site (via a fancy login box, and within the sf_content ). now if i submit the first included form i allways get a "csrf attack detected" error. i think the following happens: 1. include 1st guard form 2. set the csrf token in the session 3. include 2nd guard form 4. overwrite the csrf token with the one from the 2nd form 5. submitting 1st form fails, because its csrf token dont match with the one in the session am i right? i think maybe its a bug, why shoudnt it be possible to include the same form 2 times? somebody got a clue howto resolve this error? thanks robert -- If you want to report a vulnerability issue on symfony, please send it to security at symfony-project.com You received this message because you are subscribed to the Google Groups "symfony developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/symfony-devs?hl=en
