Anonymous users 403 when voting/undoing voting [#1886114]

Anonymous users are getting 403 error when voting or undoing voting, even when they have permission to do it.

It's because using drupal_get_token and drupal_is_valid_token with anonymous users. Drupal 7 doesn't save user session for anonymous users, so session_id is different on every page load, and tokens doesn't fit from one page to another.

Comment	File	Size	Author
#1	plus1_anonymous_cant_vote-1886114.patch	600 bytes	grisendo

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

Comment #1

grisendo CreditAttribution: grisendo commented 11 January 2013 at 13:44

File	Size
plus1_anonymous_cant_vote-1886114.patch	600 bytes

I attach a patch.

Comment #2

grisendo CreditAttribution: grisendo commented 12 January 2013 at 09:41

Status:

Active

» Needs review

Comment #3

grisendo CreditAttribution: grisendo commented 13 January 2013 at 16:41

Title:

Anonymous users 301 when voting/undoing voting

» Anonymous users 403 when voting/undoing voting

Sorry, 403, not 301 :P

Comment #4

rogical CreditAttribution: rogical commented 22 January 2013 at 13:14

Version:	7.x-1.0-alpha1	» 7.x-1.x-dev
Status:	Needs review	» Postponed

Please try the dev version, the dev seems working.

Comment #5

grisendo CreditAttribution: grisendo commented 22 January 2013 at 14:48

Ok, now I can see that this should be fixed because of #1217670: Guest unable to vote

Comment #6

grisendo CreditAttribution: grisendo commented 27 January 2013 at 19:51

Status:

Postponed

» Closed (duplicate)

Comment #6.0

grisendo CreditAttribution: grisendo commented 27 January 2013 at 19:51

Issue summary:

View changes

403, not 301 :P

Anonymous users 403 when voting/undoing voting

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Comment #6.0

Thank you to these Drupal contributors

News items

Our community

Documentation

Drupal code base

Governance of community