[BUGFIX] Invalid session token on creating content element in admin panel 90/55490/2
authorOliver Hader <oliver@typo3.org>
Mon, 29 Jan 2018 15:43:45 +0000 (16:43 +0100)
committerOliver Hader <oliver.hader@typo3.org>
Mon, 29 Jan 2018 19:35:55 +0000 (20:35 +0100)
commit245f0a9f1e404f99b49d93dfc888d3c83137d811
treea1f85f7800fc4eabbbd85eba24addeda77496712
parentc68492159a2330ec90ab1fd7aeffc3822c123595
[BUGFIX] Invalid session token on creating content element in admin panel

When creating a new content element in the frontend using the according
button in the "editing" section of the admin panel, the request to the
TYPO3 backend is rejected due to an invalid XSRF session token:

Validating the security token of this form has failed.
Please reload the form and submit it again.

The reason is, that the URL after issue #70055 looks like the following
"token=<hash>id=<id>" instead of "token=<hash>&id=<id>" - the id became
part of the XSRF session token.

Resolves: #83719
Releases: master, 8.7, 7.6
Change-Id: Ibdd252b2e59d9e8de78bb0be14a95e0789dc0d17
Reviewed-on: https://review.typo3.org/55490
Tested-by: TYPO3com <no-reply@typo3.com>
Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
Tested-by: Oliver Hader <oliver.hader@typo3.org>
typo3/sysext/frontend/Classes/View/AdminPanelView.php