Closed
Bug 819289
Opened 12 years ago
Closed 8 years ago
Do not depend on HTTP Referer to allow a wiki edit
Categories
(developer.mozilla.org Graveyard :: User management, task)
Tracking
(Not tracked)
RESOLVED
DUPLICATE
of bug 789016
People
(Reporter: bruant.d, Unassigned)
Details
My user account is "dbruant". I can login, I can click on "edit" and see the editor, but on clicking either "preview changes" or "save changes", I see an error page saying I'm not allowed to and the change isn't performed.
Comment 1•12 years ago
|
||
I just made a modification. Can you try again?
Reporter | ||
Comment 2•12 years ago
|
||
I don't see a difference :-(
Reporter | ||
Comment 3•12 years ago
|
||
Apparently, I can't edit any page... Originally tried https://developer.mozilla.org/en-US/docs/Mozilla/Boot_to_Gecko/Debugging_on_Boot_to_Gecko/Setting_up But also tried https://developer.mozilla.org/en-US/docs/DOM/document.createComment
Summary: I can't edit https://developer.mozilla.org/en-US/docs/Mozilla/Boot_to_Gecko/Debugging_on_Boot_to_Gecko/Setting_up → I can't edit any page
Reporter | ||
Comment 4•12 years ago
|
||
I can edit pages on Chrome. I tried to clear my Firefox (Aurora) cookies and restart it, but I have the same problem even after that. I don't really know what to do next.
Reporter | ||
Updated•12 years ago
|
Summary: I can't edit any page → I can't edit any page on Firefox Aurora
Comment 5•12 years ago
|
||
I also tried to "ban" him and "unban", but without success.
Comment 6•12 years ago
|
||
Daniel Holbert got the same problem today. It works in Chrome but not with Nightly. He tried with a new profile and it solved it. Could you confirm?
Comment 7•11 years ago
|
||
Any news here Jean-Yves or David?
Reporter | ||
Comment 8•11 years ago
|
||
(In reply to David Walsh :davidwalsh from comment #7) > Any news here Jean-Yves or David? I had given up and worked from Chrome. (In reply to Jean-Yves Perrier [:teoli] from comment #6) > Daniel Holbert got the same problem today. It works in Chrome but not with > Nightly. > He tried with a new profile and it solved it. Could you confirm? I just tried safe mode and I could edit. So it comes from one of my add-ons... and it actually wasn't hard to pin down which one: RefControl https://addons.mozilla.org/fr/firefox/addon/refcontrol/ I have configured it to never send the Referer header to any website. For whatever reason or purpose, edits on Kuma rely on the Referer header being sent. For my own personal case, I've just configured RefControl to send the Referer normally to dev.moz.org (and I can edit). But probably Kuma should accept edits even if there is no referer... maybe Kuma uses the referer to figure out which page is being edited?
Comment 9•11 years ago
|
||
Requiring a referer can sometimes be a spam prevention technique; I'll see what the rest of the team says.
Reporter | ||
Comment 10•11 years ago
|
||
(In reply to David Walsh :davidwalsh from comment #9) > Requiring a referer can sometimes be a spam prevention technique; In this particular instance (editing the wiki), the user has to be logged-in, so if he/she is spamming, the account can be suspended and it might be possible to remove all spamish content in one click (is there something like that implemented or on track?). > I'll see what the rest of the team says. Repurposing the bug, you can invite them here to discuss :-)
Summary: I can't edit any page on Firefox Aurora → Do not depend on HTTP Referer to allow a wiki edit
Comment 11•11 years ago
|
||
Yep, I understand that you must log in to make edits; my thought was that there's probably a blanket Django policy that requires a referrer. I'm sure we can work this out.
Updated•8 years ago
|
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → DUPLICATE
Updated•4 years ago
|
Product: developer.mozilla.org → developer.mozilla.org Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•