Advertisement
richie09

Invalid or missing CSRF token on creating a patient

Jan 17th, 2022
45
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. [INFO] Started Jetty Server
  2. [INFO] Initializing Spring DispatcherServlet 'openmrs'
  3. WARN - OpenmrsJspServlet.rescanTldsIfNeeded(56) |2022-01-17T18:10:11,240| Rescanning TLDs
  4. [INFO] Warning: No org.apache.tomcat.JarScanner set in ServletContext. Falling back to default JarScanner implementation.
  5. [INFO] At least one JAR was scanned for TLDs yet contained no TLDs. Enable debug logging for this logger for a complete list of JARs that were scanned but no TLDs were found in them. Skipping unneeded JARs during scanning can improve startup time and JSP compilation time.
  6. ERROR - Log.execute(73) |2022-01-17T18:10:34,713| potential cross-site request forgery (CSRF) attack thwarted (user:<anonymous>, ip:[0:0:0:0:0:0:0:1], method:POST, uri:/openmrs/ms/legacyui/loginServlet, error:Request Token does not match the Master Token)
  7. WARN - CsrfGuardFilter.logInvalidRequest(136) |2022-01-17T18:10:34,714| Invalid request: URI: '/openmrs/ms/legacyui/loginServlet' | Remote Address: '[0:0:0:0:0:0:0:1]'
  8. ERROR - Log.execute(73) |2022-01-17T18:12:13,631| potential cross-site request forgery (CSRF) attack thwarted (user:<anonymous>, ip:[0:0:0:0:0:0:0:1], method:POST, uri:/openmrs/ms/call/plaincall/DWRPatientService.findCountAndPatients.dwr, error:Request Token does not match the Master Token)
  9. WARN - CsrfGuardFilter.logInvalidRequest(136) |2022-01-17T18:12:13,636| Invalid request: URI: '/openmrs/ms/call/plaincall/DWRPatientService.findCountAndPatients.dwr' | Remote Address: '[0:0:0:0:0:0:0:1]'
  10. ERROR - Log.execute(73) |2022-01-17T18:12:14,219| potential cross-site request forgery (CSRF) attack thwarted (user:<anonymous>, ip:[0:0:0:0:0:0:0:1], method:POST, uri:/openmrs/ms/call/plaincall/DWRPatientService.findCountAndPatients.dwr, error:Request Token does not match the Master Token)
  11. WARN - CsrfGuardFilter.logInvalidRequest(136) |2022-01-17T18:12:14,221| Invalid request: URI: '/openmrs/ms/call/plaincall/DWRPatientService.findCountAndPatients.dwr' | Remote Address: '[0:0:0:0:0:0:0:1]'
  12. ERROR - Log.execute(73) |2022-01-17T18:12:14,533| potential cross-site request forgery (CSRF) attack thwarted (user:<anonymous>, ip:[0:0:0:0:0:0:0:1], method:POST, uri:/openmrs/ms/call/plaincall/DWRPatientService.findCountAndPatients.dwr, error:Request Token does not match the Master Token)
  13. WARN - CsrfGuardFilter.logInvalidRequest(136) |2022-01-17T18:12:14,537| Invalid request: URI: '/openmrs/ms/call/plaincall/DWRPatientService.findCountAndPatients.dwr' | Remote Address: '[0:0:0:0:0:0:0:1]'
  14. INFO - SerializationServiceImpl.getDefaultSerializer(73) |2022-01-17T18:22:23,108| No default serializer specified - using builtin SimpleXStreamSerializer.
  15. Security framework of XStream not explicitly initialized, using predefined black list on your own risk.
  16. [INFO] Initializing Spring StaticDispatcherServlet 'openmrs_static_content'
  17. ERROR - Log.execute(73) |2022-01-17T18:22:40,407| potential cross-site request forgery (CSRF) attack thwarted (user:<anonymous>, ip:[0:0:0:0:0:0:0:1], method:POST, uri:/openmrs/admin/patients/shortPatientForm.form, error:Request Token does not match the Master Token)
  18. WARN - CsrfGuardFilter.logInvalidRequest(136) |2022-01-17T18:22:40,408| Invalid request: URI: '/openmrs/admin/patients/shortPatientForm.form' | Remote Address: '[0:0:0:0:0:0:0:1]'
  19. ERROR - Log.execute(73) |2022-01-17T18:23:17,376| potential cross-site request forgery (CSRF) attack thwarted (user:<anonymous>, ip:[0:0:0:0:0:0:0:1], method:POST, uri:/openmrs/admin/patients/shortPatientForm.form, error:Request Token does not match the Master Token)
  20. WARN - CsrfGuardFilter.logInvalidRequest(136) |2022-01-17T18:23:17,384| Invalid request: URI: '/openmrs/admin/patients/shortPatientForm.form' | Remote Address: '[0:0:0:0:0:0:0:1]'
Advertisement
RAW Paste Data Copied
Advertisement