This may (or may not) be this bug
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=37040
There are several bugs that will be in 24.05.01 that will fix upgrade and
CSRF issues.
David Nind
New Zealand
On Fri, 14 Jun 2024 at 13:38, Charles Athey via Koha-devel <
koha-devel@lists.koha-commu
It's possible that the login form is generated with one session and then
another session is created before the token from the first session is checked.
The value of $csrf_status in the _chk_csrf subroutine in Koha/Token.pm should
specify the exact error (0 is OK, 1 is expired, 2 is invalid, 3 is
