I'm migrating from an old version to new OMERO, and have some customizations. The old version is working.
On my new version, I have some pages that are using the web public user. I have them in omero.web.public.url_filter. When I open to these pages on a new tab or refresh- they work without a login. When I refer from one page to another using POST forms I get
Forbidden (403)
CSRF Error. You don't have permission to access this page on this server.
I can then refresh that same page and it appears. I'm assuming the CSRF isn't following through the link but is being recreated via the public user on new page/refresh.
In the logs, I have this for the broken pages:
- Code: Select all
2017-03-15 02:58:00,845 DEBUG [ omeroweb.decorators] (proc.22918) wrapped():468 Connection not provided, attempting to get one.
2017-03-15 02:58:00,845 DEBUG [ omeroweb.decorators] (proc.22918) get_authenticated_connection():367 Is SSL? False
2017-03-15 02:58:00,845 DEBUG [ omeroweb.decorators] (proc.22918) get_authenticated_connection():369 Connector: <omeroweb.connector.Connector object at 0x5280ad0>
2017-03-15 02:58:00,845 DEBUG [ omeroweb.decorators] (proc.22918) get_authenticated_connection():430 Django session connector: <omeroweb.connector.Connector object at 0x5280ad0>
2017-03-15 02:58:00,845 DEBUG [ omero.gateway] (proc.22918) _resetOmeroClient():1918 localhost
2017-03-15 02:58:00,846 DEBUG [ omero.gateway] (proc.22918) _resetOmeroClient():1919 4064
2017-03-15 02:58:00,846 DEBUG [ omero.gateway] (proc.22918) _resetOmeroClient():1920 []
2017-03-15 02:58:00,849 DEBUG [ omero.gateway] (proc.22918) connect():1960 Connect attempt, sUuid=askdjfhjahksdfhskadjfhsdka, group=None, self.sUuid=None
2017-03-15 02:58:00,849 DEBUG [ omero.gateway] (proc.22918) connect():1970 connected? False
What am I missing?
