Redmine: 422 invalid form authenticity token

ruby authentication single-sign-on redmine redmine-plugins
Chanuka Ranaba picture Chanuka Ranaba · Feb 25, 2015 · Viewed 8.4k times · Source

I'm using this plugin to enable SSO between my IDP and redmine. Purpose is to avoid re entering username and password when login to the redmine. Both Redmine and the IDP connected to an external LDAP. Problem is after redirecting back to the redmine from my IDP (after entering username & password), It's giving this error.

Redmine version: 2.5.2, Ruby version: 1.9.3, Rails version: 3.2.19

error

Answer

Wild Black Boar picture Wild Black Boar · Sep 14, 2017

Some details for Redmine 3.4.2

If you get an error 422 (Can't verify CSRF token authenticity), you must go to controller file

/app/controller/aplication_controller.rb

and remove or comment string with code

render_error :status => 422, :message => "invalid form authenticity token."

then add code

redirect_back_or_default(home_path)

So, your code will be like this

# render_error :status => 422, :message => "invalid form authenticity token."
redirect_back_or_default(home_path)

Related questions

SAML 2.0 SSO for Ruby on Rails?

Where can I dig up a Ruby or Ruby on Rails library for SAML 2.0 SSO. I have a set of enterprise applications that are to be built but need to have federated login from a central authentication system. I have …

Read More
Best Solution For Authentication in Ruby on Rails

I'm looking for a pre-built solution I can use in my RoR application. I'm ideally looking for something similar to the ASP.NET Forms authentication that provides email validation, sign-up controls, and allows users to reset their passwords. Oh yeah, …

Read More
Extending Devise SessionsController to authenticate using JSON

I am trying to build a rails API for an iphone app. Devise works fine for logins through the web interface but I need to be able to create and destroy sessions using REST API and I want to use …

Read More