Security token not set.
Page: «2/2
  Go to:
Liam Dawe Aug 7, 2021
Quoting: tuubiAh. I don't really see a good way to get around this if the user takes long enough to type their reply that their session is already gone when they submit the form. I guess they might load a bunch of articles in tabs and only get around to actually reading them and commenting a few hours later. Maybe... add the token on demand when the user actually starts to comment/reply instead of when they load the articles or threads?
This just gave me a bright idea. I think I know part of the issue here, it's our AJAX pagination system as it only reloads the comments area and not the comment box so if their session reloads when a new comment page is loaded they will get a new token but the comment box is not updated with it.

Edit: okay so this newer code should now be live, hopefully it will help.

Last edited by Liam Dawe on 7 August 2021 at 6:27 pm UTC
Purple Library Guy Aug 7, 2021
Quoting: Liam DaweHow long were you on the page when it happens?
Probably quite a while. I do, as people have discussed here, typically open quite a few GoL tabs and work through them gradually.
I haven't had any problems so far today, so hopefully your fix/es are working. Thanks for looking at it!
Liam Dawe Aug 10, 2021
Added a further fix: the site now pings a session refresher every 5 minutes to keep it alive, which should solve 99% of the issues while still keeping forms secure from cross-site requests.
Purple Library Guy Aug 10, 2021
Quoting: Liam DaweAdded a further fix: the site now pings a session refresher every 5 minutes to keep it alive, which should solve 99% of the issues while still keeping forms secure from cross-site requests.
I can confirm that a few minutes ago I did a reply on a tab which I'd opened earlier in the morning and only got around to looking at hours later, and it did not stop me.
Arehandoro Aug 13, 2021
Sorry for late reply, it seems to be fixed for me too. Thanks Liam!
Liam Dawe Aug 13, 2021
Glad to know it's sorted. People could say that refreshing the session in the background is a potential problem for people who leave their browser open and walk away or whatever - but that's also true for literally every other website out there that has a login, it's basically the only way to ensure people don't lose stuff.

So will consider this sorted.
While you're here, please consider supporting GamingOnLinux on:

Reward Tiers: Patreon. Plain Donations: PayPal.

This ensures all of our main content remains totally free for everyone! Patreon supporters can also remove all adverts and sponsors! Supporting us helps bring good, fresh content. Without your continued support, we simply could not continue!

You can find even more ways to support us on this dedicated page any time. If you already are, thank you!
Login / Register


Or login with...
Sign in with Steam Sign in with Google
Social logins require cookies to stay logged in.