Issue #3353 resolved
Anonymous created an issue

I always get "CSRF verification failed. Request aborted."

Anything wrong?

Comments (3)

  1. Mehmet Catalbas

    Are you using Firefox?

    Bitbucket uses a Referer header to stop CSRF attacks. As the error message should have stated, you have likely disabled (or an add-on might have changed it) Referer headers in Firefox and this is why you are unable to use it against Bitbucket.

    Could you type about:config in your address bar, and search for Network.http.sendRefererHeader preference? Its value should be set to 2 (default).

    You can read up on that setting here:

  2. Log in to comment