Rails 3.2 + Facebook auth + CSRF FAILURE

Question

Rails 3.2 + Facebook auth + CSRF FAILURE

This is the error that I see when I try to log in via facebook, I always see this error. It seems he cannot get rid of him:

Failed to authorize you from Facebook because "Csrf detected."

I missed:

skip_before_filter :verify_authenticity_token

in the Omniauth callback, but still I get the error. This happens in both local and prod (heroku) environments. I set the heroku environment variables. Any idea?

+5

ruby-on-rails facebook-oauth heroku

tesserakt Jul 18 '12 at 19:04

source share

3 answers

, ! , - , . , omniauth . .

: facebook,.....

config/initializers/devise.rb .

, , .

+7

Sébastien Gruhier 20 . '12 12:56

You are sending the p3p header, maybe add ...

before_filter :set_p3p
private

def set_p3p
  headers['P3P'] = 'CP="ALL DSP COR CURa ADMa DEVa OUR IND COM NAV"'
end

for your application controller

0

Purple hexagon Jul 18 '12 at 19:49

source share

tesserakt · Accepted Answer · 2012-07-21T02:38:17+0000

I found that the problem was that this stone was too new and passed the STATE header to facebook, which fb did not want. I returned omniauth-facebook gem version and worked

Rails 3.2 + Facebook auth + CSRF FAILURE

More articles: