CSRF Verification failed on Opera

Issue #7785 wontfix
Keith Grootboom
created an issue

When logging in on Opera I get the below error on the URL

https://bitbucket.org/account/signin/

Forbidden (403)

CSRF verification failed. Request aborted.

You are seeing this message because this HTTPS site requires a 'Referer header' to be sent by your Web browser, but none was sent. This header is required for security reasons, to ensure that your browser is not being hijacked by third parties.

If you have configured your browser to disable 'Referer' headers, please re-enable them, at least for this site, or for HTTPS connections, or for 'same-origin' requests.

More information is available with DEBUG=True.

Comments (3)

  1. Ali Tavakoli

    I think it's a general issue with Opera and websites that require the Referer header.

    You can look under Tools > Preferences > Advanced > Network and make sure that "Send referrer information" is checked.

    This also looks to be a duplicate of issue #2982.

  2. Log in to comment