Skip to Content
9

csrfattackdetected - 4 attempts needed until an answer gets saved

Nov 24, 2016 at 11:09 PM

1.8k

avatar image

not enough that we have less questions as usual, now the platform already restricts us to even answer these few questions.

Its midnight in Europe, absolutely no traffic in the community at that time, so it can't be caused by an overload.

csrfattack.png (68.0 kB)
bug
10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

5 Answers

Jelena Perfiljeva
Nov 28, 2016 at 09:47 PM
0

I just got the same error. Of course, all the text I was typing in the answer got lost. Beyond mad with this website. :(

Share
10 |10000 characters needed characters left characters exceeded
Jelena Perfiljeva
Dec 06, 2016 at 08:29 PM
0

And here we go again, same thing today. At least when some logoff happened in the old SCN you could still recover the text. But here it takes you to another page and when you hit Back all the text you've been constructing for so long (to avoid getting reported for "unprofessional behavior") is gone. :(

Share
10 |10000 characters needed characters left characters exceeded
Moshe Naveh
Jan 02, 2017 at 10:49 AM
0

Hello,

I apologize for this experience. We are aware of this issue and working on resolving it.

Thank you,

Moshe

Share
10 |10000 characters needed characters left characters exceeded
Sebastian Wolf
Feb 07, 2017 at 10:23 AM
0

Hi Jürgen, hi everybody,

I'm sorry for the issues which you've encountered so far - especially when it comes to data loss!

The first workaround for this issue was deployed yesterday afternoon CET. Our internal tests were already quite promising, but of course nothing beats real life.

In case you still encounter issues now, please let me know immediately, either here in this thread or directly via e-mail (sebastian.wolf@sap.com). You can also find additional details in the discussion https://answers.sap.com/articles/95677/status-update-ive-had-it-with-these-motherfg-snake.html

Thanks and best regards,

Sebastian (SAP Community Architect)

Show 12 Share
10 |10000 characters needed characters left characters exceeded

Can you describe this "first workaround" - What it does and how we know?

I saw a pop-up yesterday informing me that I have been logged out (I certainly had the discussion only open for 10 seconds at that time) Are you talking about this information pop-up or anything else?

0

Sure! We weren't really able to find a "smoking gun", i.e. a tracable or identifyable single error source even when we tried to reproduce it. Therefore, we needed to implement some measures to fix possible situations which could lead to the erroneous CSRF detection by the core framework of SAP Answers (the infrastructure which is maintained by the external vendor as outlined by Oliver in the other thread).

The first possible situation is that the session identifier which is used to detect CSRF attacks changed over time for whatever reason (e.g. you became logged off and logged on again on another tab) while you are using SAP Answers. Another issue could be that your session expired while you still have one or more tabs open. A third option could be that your client doesn't accept certain cookies or some important session cookies were deleted (e.g. by a add-on/plug-in or manually).

We now check continuously in the background while you use SAP Answers if the session identifier has changed. In case it has changed and you are still or again logged on we repair the state of the page silently so that you don't lose data and you are not bugged with pop-ups. In case you were logged off, we notify you so that you can save your data in case you started to create or edit a post. In case your session data has become completely invalid, we also inform you and ask you to logoff and logon again after you have saved your data. That's basically the first version.

So you're now saying that you got the popup already after having a discussion open for only 10 seconds. Do you still remember if you had other SAP Answers tabs opened? Moreover, it would be interesting which browser (including add-ons) you are using and if your machine just recovered from standby... Especially if you can reproduce it somehow.

Thanks and best regards, Sebastian

0

It can be that I had other questions open. That's is very usual for me. I am using the Chrome browser, with AdBlock, Cisco Webex Extension and RSS Reader. I can't really reproduce it, I just realized that I did not have a loss for many days, because after I finish writing I do a Ctrl+C to avoid this potential loss. It looks too me that this activity is giving a breathless server some time to accept finally the answer without running into that issue.

0

Test comment to reproduce the issue!

0

Interesting bug:

I have created test comment to reproduce the old bug (with long delay before final posting). It was saved without issues. Then I selected Delete for the mentioned comment. It was not deleted and now I have no option to delete it :)

delcom.png (61.5 kB)
0

Seems that there was an issue during deletion... I restored the statuses, please try again.

0
Show more comments

Hello Sebastian,

I just had this issue while answering a question. Twice I got the error and both times I lost my content (second time around I was smart enough to copy it before submitting). After refreshing the whole page I could finally post my answer.

So something still seems to be amiss.

.

Regards,

Steffi.

0

Hi Steffi,

I'm really sorry for that! Didn't you get at least a popup which informed you about the session inconsistency? Could it be that the time to write your answer took less than a minute?

Anyway, any information which could help us to identify the root cause would be highly appreciated. We're especially looking for actions which you did before you started answering the question (e.g. following a link form another page, long inactivity etc.), which other tabs related to the SAP Community you had still open and which browser incl. add-ons you are using.

Thanks in advance and best regards, Sebastian

0

Hello Sebastian,

I use IE11 with no add-ons (I know of).

No popup appeared. Just the message Jürgen posted in the start post after I submitted my answer.

It took me a bit more than a minute to write the answer, because I checked some info in my system while doing so.

I jumped to the question via the q&a overview page (https://answers.sap.com/index.html) having it filtered by my followed tag "SAP Identity Management" (so the url would be https://answers.sap.com/tags/01200615320800000721).

I wasn't inactive while writing it. Took me probably less than 10 minutes to finalize it; during that time I still changed and added to the content, so no real inactivity.

Sadly I don't remember having any other SCN tabs open at the time. Maaaybe the CC (https://answers.sap.com/content/kbentry/list.html) or my Notifications (https://activities.sap.com/#/notifications).

Hope this helps a bit. :)

.

Regards,

Steffi.

0

OK, nothing special concerning your local environment and it took longer than a minute to write. You should have received a notification in case the session became invalid. So either the session became invalid in the last minute before you posted the answer or you have enabled some kind of blocker for messages in your browser.

Anyway, it seems that we need to refine the workaround a bit. Thanks for the reply and again sorry!

Best regards, Sebastian

0
0
Denis Konovalov
Feb 07, 2017 at 01:10 PM
0

Did not have that problem, but yesterday site was extremely slow and twice I had to give up on waiting for it to post an answer - I ctrl-c my answer, hit refresh and posted it again...

Show 1 Share
10 |10000 characters needed characters left characters exceeded

That was hopefully only a temporary issue, please report back if you still encounter issues here.

0