Hi all,
after upgrading to OpenProject, users are not redirected anymore after login.
If you login is valid, the Login windows stays open on the browser with username and password as if the Login button was never pressed. (If not valid, there is the normal ‘password or user incorrect’ dialogue)
If you click Login again, you get an 422 error with this message (sorry, german):
Das Cross-Site Request Forgery Token konnte nicht verfiziert werden. Wenn Sie versucht haben, Daten auf mehreren Tabs oder Browsern abzuspeichern, schließen sie diese und laden diese Seite erneut um den Vorgang zu wiederholen.
There are no other tabs or whatever. The Server operates under a single Domain with valid SSL certificates, so no Cross Site requests as far as i can tell.
I tested this on two different UCS systems in different environments, same issue.
As a workaround, you can remove the /login part from the URL after clicking login, this brings you to your normal logged in user view and you can use OP without any problems.
Any ideas why the redirect after a successful login is not working?
Regards,
Felix