The most recent request was denied because it contained an invalid security token. Please refresh the page and try again

Need help upgrading your Joomla! website or converting to Joomla! 3.x? Please consider the availability of third-party templates and extensions when deciding which Joomla version to use.

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
User avatar
effrit
Joomla! Guru
Joomla! Guru
Posts: 645
Joined: Sun Nov 12, 2017 2:21 pm
Location: middle of Russia
Contact:

Re: The most recent request was denied because it contained an invalid security token. Please refresh the page and try a

Post by effrit » Sun Mar 11, 2018 1:18 pm

The problem is - this is common situation.
Even some experienced developers had it time to time, so i post here the solution to access in admin panel.
I guess this time it's the concrete module fault but i am not sure.

User avatar
sozzled
Joomla! Champion
Joomla! Champion
Posts: 5501
Joined: Sun Jul 05, 2009 3:30 am
Location: Canberra, Australia
Contact:

Re: The most recent request was denied because it contained an invalid security token. Please refresh the page and try a

Post by sozzled » Sun Mar 11, 2018 6:45 pm

@JAVesey: there are several elements that could be involved. The main culprit behind the "invalid security token" argument is PEBKAC but here's a list of the usual gang of suspects:
  • Sytem - Page Cache plugin: this is not to be confused with the core caching services whose settings are adjusted in the Global Configuration. This is a completely different thing. This plugin is disabled by default. This plugin is designed to be used with sites whose content rarely, if ever, changes. It's may not even be a good idea to enable this plugin if people are logging-in and logging-out of a website. If you do not know what the Sytem - Page Cache plugin does then do not enable it.
  • _session table: there can be times with the session data isn't properly sanitised; it may be necessary for the session data to be purged.
  • "advanced" caching services: Joomla's caching system should be agnostic about any host-based services used server side caching. If you use these caching systems then learn how they work before you use them.
Lastly, and in conclusion, guess what? No-one has provided even one FPA report that may allow the Joomla developers to get a handle on the problem!
https://www.kuneze.com/blog
Former member of Kunena project team
If you think I’m wrong then say “I think you're wrong.” If you say “You’re wrong!”, how do you know?

erixis
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 104
Joined: Fri Jan 26, 2007 11:48 pm

Re: The most recent request was denied because it contained an invalid security token. Please refresh the page and try a

Post by erixis » Wed Jul 25, 2018 1:12 pm

Ok, so I'm having this same problem on a local (XAMPP) install. Just set up a J3.8.10 install using JoomlaXTC quickstart installation package. I've not installed anything else in this joomla install. I worked on changing out some images in the template for an hour or so last night, and then, right in the middle of this work, got locked out of the back end with this invalid token error. Cleared browser cache once and it fixed it, but now this morning, I'm locked out again, and can't fix it by clearing browser cache, using a different browser, or using phpmyadmin to repair the session tables.

Caching is in the default state of '0' both in the config file and in the plugin's MySQL table setting.

Since no one has posted it, here's the FPA info. Hopefully someone can offer insight into this. It being on XAMPP running on a Windows machine, it may have no relevance to a live site on a linux server.
Problem Description :: Forum Post Assistant (v1.4.3 (Frosty)) : 25th July 2018 wrote:Invalid Token
Log/Error Message :: Forum Post Assistant (v1.4.3 (Frosty)) : 25th July 2018 wrote:The most recent request was denied because it had an invalid security token. Please refresh the page and try again.
Log/Error Message :: Forum Post Assistant (v1.4.3 (Frosty)) : 25th July 2018 wrote:[Wed Jul 25 07:19:02.291504 2018] [php7:notice] [pid 38612:tid 1648] [client ::1:62091] PHP Notice: unserialize(): Error at offset 2 of 358 bytes in C:\\XAMPP_7\\htdocs\\michaud\\libraries\\vendor\\joomla\\registry\\src\\Registry.php on line 89, referer: http://localhost/michaud/
Actions Taken To Resolve by Forum Post Assistant (v1.4.3 (Frosty)) 25th July 2018 wrote:Cleared browsing history
Used different browser (explorer and chrome)
Rebuilt Session tables
Forum Post Assistant (v1.4.3 (Frosty)) : 25th July 2018 wrote:
Basic Environment :: wrote:Joomla! Instance :: Joomla! 3.8.10-Stable (Amani) 26-June-2018
Joomla! Platform :: Joomla Platform 13.1.0-Stable (Curiosity) 24-Apr-2013
Joomla! Configured :: Yes | Writable (666) | Owner: --protected-- . (uid: /gid: ) | Group: --protected-- (gid: ) | Valid For: 3.8
Configuration Options :: Offline: 0 | SEF: 1 | SEF Suffix: 0 | SEF ReWrite: 0 | .htaccess/web.config: No | GZip: 0 | Cache: 0 | CacheTime: 15 | CacheHandler: file | CachePlatformPrefix: 0 | FTP Layer: 0 | Proxy: N/A | LiveSite: | Session lifetime: 999 | Session handler: database | Shared sessions: 0 | SSL: N/A | Error Reporting: default | Site Debug: 0 | Language Debug: 0 | Default Access: 1 | Unicode Slugs: 0 | dbConnection Type: mysqli | PHP Supports J! 3.8.10: Yes | Database Credentials Present: Password missing |

Host Configuration :: OS: Windows NT | OS Version: 6.1 | Technology: i586 | Web Server: Apache/2.4.29 (Win32) OpenSSL/1.0.2l PHP/7.1.11 | Encoding: gzip, deflate, br | Doc Root: --protected-- | System TMP Writable: Yes | Free Disk Space : 411.14 GiB |

PHP Configuration :: Version: 7.1.11 | PHP API: apache2handler | Session Path Writable: Yes | Display Errors: 1 | Error Reporting: 22527 | Log Errors To: C:\XAMPP_7\php\logs\php_error_log | Last Known Error: | Register Globals: | Magic Quotes: | Safe Mode: | Open Base: | Uploads: 1 | Max. Upload Size: 2M | Max. POST Size: 8M | Max. Input Time: 60 | Max. Execution Time: 300 | Memory Limit: 128M

Database Configuration :: Version: 5.5.5-10.1.28-MariaDB (Client:mysqlnd 5.0.12-dev - 20150407 - $Id: b396954eeb2d1d9ed7902b8bae237b287f21ad9e $) | Host: --protected-- (--protected--) | Localhost: Yes | Collation: utf8_general_ci (Character Set: utf8) | Database Size: 12.56 MiB | #of Tables:  272
Detailed Environment :: wrote:PHP Extensions :: Core (7.1.11) | bcmath (7.1.11) | calendar (7.1.11) | ctype (7.1.11) | date (7.1.11) | filter (7.1.11) | hash (1.0) | iconv (7.1.11) | json (1.5.0) | mcrypt (7.1.11) | SPL (7.1.11) | pcre (7.1.11) | readline (7.1.11) | Reflection (7.1.11) | session (7.1.11) | standard (7.1.11) | mysqlnd (mysqlnd 5.0.12-dev - 20150407 - $Id: b396954eeb2d1d9ed7902b8bae237b287f21ad9e $) | tokenizer (7.1.11) | zip (1.13.5) | zlib (7.1.11) | libxml (7.1.11) | dom (20031129) | PDO (7.1.11) | bz2 (7.1.11) | SimpleXML (7.1.11) | xml (7.1.11) | wddx (7.1.11) | xmlreader (7.1.11) | xmlwriter (7.1.11) | apache2handler () | openssl (7.1.11) | curl (7.1.11) | fileinfo (1.0.5) | gd (7.1.11) | gettext (7.1.11) | mbstring (7.1.11) | exif (1.4 $Id: 8bdc0c8f27c2c9dd1f7551f1f9fe3ab57a06a4b1 $) | mysqli (7.1.11) | pdo_mysql (7.1.11) | pdo_sqlite (7.1.11) | Phar (2.0.2) | ftp (7.1.11) | Zend Engine (3.1.0) |
Potential Missing Extensions ::

Switch User Environment (Experimental) :: PHP CGI: No | Server SU: No | PHP SU: No | Custom SU (LiteSpeed/Cloud/Grid): Yes
Potential Ownership Issues: No

Apache Modules :: core | mod_win32 | mpm_winnt | http_core | mod_so | mod_access_compat | mod_actions | mod_alias | mod_allowmethods | mod_asis | mod_auth_basic | mod_authn_core | mod_authn_file | mod_authz_core | mod_authz_groupfile | mod_authz_host | mod_authz_user | mod_autoindex | mod_cgi | mod_dav_lock | mod_dir | mod_env | mod_headers | mod_include | mod_info | mod_isapi | mod_log_config | mod_cache_disk | mod_mime | mod_negotiation | mod_proxy | mod_proxy_ajp | mod_rewrite | mod_setenvif | mod_socache_shmcb | mod_ssl | mod_status | mod_version | mod_php7 | Apache/2.4.29 (Win32) OpenSSL/1.0.2l PHP/7.1.11 |
Potential Missing Modules :: mod_expires | mod_deflate | mod_security | mod_evasive | mod_dosevasive | mod_qos | mod_userdir |
Folder Permissions :: wrote:Core Folders :: images/ (777) | components/ (777) | modules/ (777) | plugins/ (777) | language/ (777) | templates/ (777) | cache/ (777) | logs/ (777) | tmp/ (777) | administrator/components/ (777) | administrator/modules/ (777) | administrator/language/ (777) | administrator/templates/ (777) | administrator/logs/ (777) |

Elevated Permissions (First 10) :: administrator/ (777) | administrator/cache/ (777) | administrator/cache/imagegallery/ (777) | administrator/cache/xtc/ (777) | administrator/components/ (777) | administrator/components/com_acymailing/ (777) | administrator/components/com_acymailing/buttons/ (777) | administrator/components/com_acymailing/classes/ (777) | administrator/components/com_acymailing/compat/ (777) | administrator/components/com_acymailing/controllers/ (777) |
Database Information :: wrote:Database statistics :: Uptime: 61828 | Threads: 1 | Questions: 27646 | Slow queries: 0 | Opens: 640 | Flush tables: 1 | Open tables: 324 | Queries per second avg: 0.447 |
Extensions Discovered :: wrote:Components :: SITE ::
Core :: com_mailto (3.0.0) 1 | com_wrapper (3.0.0) 1 |
3rd Party::

Components :: ADMIN ::
Core :: com_admin (3.0.0) 1 | com_ajax (3.2.0) 1 | com_associations (3.7.0) 1 | com_banners (3.0.0) 1 | com_cache (3.0.0) 1 | com_categories (3.0.0) 1 | com_checkin (3.0.0) 1 | com_config (3.0.0) 1 | com_content (3.0.0) 1 | com_contenthistory (3.2.0) 1 | com_cpanel (3.0.0) 1 | com_fields (3.7.0) 1 | com_finder (3.0.0) 1 | com_installer (3.0.0) 1 | com_joomlaupdate (3.6.2) 1 | com_languages (3.0.0) 1 | com_login (3.0.0) 1 | com_media (3.0.0) 1 | com_menus (3.0.0) 1 | com_messages (3.0.0) 1 | com_modules (3.0.0) 1 | com_newsfeeds (3.0.0) 1 | com_plugins (3.0.0) 1 | com_postinstall (3.2.0) 1 | com_redirect (3.0.0) 1 | com_search (3.0.0) 1 | com_tags (3.1.0) 1 | com_templates (3.0.0) 1 | com_users (3.0.0) 1 | com_weblinks (3.0.0) 1 |
3rd Party:: AcyMailing (4.9.3) 1 | AcyMailing Module (3.7.0) 1 | AcyMailing : trigger Joomla Co (3.7.0) 1 | AcyMailing Manage text (1.0.0) 1 | AcyMailing Tag : Website links (3.7.0) 1 | AcyMailing : share on social n (1.0.0) 1 | AcyMailing : Statistics Plugin (3.7.0) 1 | AcyMailing table of contents g (1.0.0) 1 | AcyMailing Tag : CB User infor (3.7.1) 1 | AcyMailing Tag : content inser (3.7.0) 1 | AcyMailing Tag : Subscriber in (4.9.3) 1 | AcyMailing Tag : Manage the Su (4.9.3) 1 | AcyMailing Tag : Date / Time (4.9.3) 1 | AcyMailing Tag : Joomla User I (4.9.3) 1 | AcyMailing Template Class Repl (4.9.3) 1 | AcyMailing Editor (4.9.3) 1 | AcyMailing : (auto)Subscribe d (4.9.3) 1 | com_jem (2.1.4.2) 1 | JHotelReservation (4.0.0) 1 | JHotelSearchFilter (1.0.0) 1 | Hotel Gallery (1.0) 1 | Hotel Url Translator (5.0.0) 1 | JHotelReservation (5.4.8) 1 | JXTC (3.4.0) 1 | COM_K2 (2.6.9) 1 |

Modules :: SITE ::
Core :: mod_articles_archive (3.0.0) 1 | mod_articles_categories (3.0.0) 1 | mod_articles_category (3.0.0) 1 | mod_articles_latest (3.0.0) 1 | mod_articles_news (3.0.0) 1 | mod_articles_popular (3.0.0) 1 | mod_banners (3.0.0) 1 | mod_breadcrumbs (3.0.0) 1 | mod_custom (3.0.0) 1 | mod_feed (3.0.0) 1 | mod_finder (3.0.0) 1 | mod_footer (3.0.0) 1 | mod_languages (3.5.0) 1 | mod_login (3.0.0) 1 | mod_menu (3.0.0) 1 | mod_random_image (3.0.0) 1 | mod_related_items (3.0.0) 1 | mod_search (3.0.0) 1 | mod_stats (3.0.0) 1 | mod_syndicate (3.0.0) 1 | mod_tags_popular (3.1.0) 1 | mod_tags_similar (3.1.0) 1 | mod_users_latest (3.0.0) 1 | mod_weblinks (3.0.0) 1 | mod_whosonline (3.0.0) 1 | mod_wrapper (3.0.0) 1 |
3rd Party:: AcyMailing Module (3.7.0) 1 | mod_jem (2.1.4.2) 1 | mod_jem_banner (2.1.4.2) 1 | mod_jem_cal (2.1.4.2) 1 | mod_jem_jubilee (2.1.4.2) 1 | mod_jem_teaser (2.1.4.2) 1 | mod_jem_wide (2.1.4.2) 1 | JHotelReservation (4.0.0) 1 | JHotelSearchFilter (1.0.0) 1 | JoomlaXTC Elevator (1.0.0) 1 | JoomlaXTC HTML Module (1.1.0) 1 | JoomlaXTC JEM Wall (1.2.1) 1 | JoomlaXTC Deluxe News Pro (3.52.0) 1 | K2 Comments (2.6.9) 1 | K2 Content (2.6.9) 1 | K2 Tools (2.6.9) 1 | K2 User (2.6.9) 1 | K2 Users (2.6.9) 1 |

Modules :: ADMIN ::
Core :: mod_custom (3.0.0) 1 | mod_feed (3.0.0) 1 | mod_latest (3.0.0) 1 | mod_logged (3.0.0) 1 | mod_login (3.0.0) 1 | mod_menu (3.0.0) 1 | mod_multilangstatus (3.0.0) 1 | mod_popular (3.0.0) 1 | mod_quickicon (3.0.0) 1 | mod_sampledata (3.8.0) 1 | mod_stats_admin (3.0.0) 1 | mod_status (3.0.0) 1 | mod_submenu (3.0.0) 1 | mod_title (3.0.0) 1 | mod_toolbar (3.0.0) 1 | mod_version (3.0.0) 1 |
3rd Party:: K2 Quick Icons (admin) (2.6.9) 1 | K2 Stats (admin) (2.6.9) 1 |

Plugins :: SITE ::
Core :: plg_authentication_cookie (3.0.0) 1 | plg_authentication_gmail (3.0.0) 0 | plg_authentication_joomla (3.0.0) 1 | plg_authentication_ldap (3.0.0) 0 | plg_captcha_recaptcha (3.4.0) 1 | plg_content_emailcloak (3.0.0) 0 | plg_content_fields (3.7.0) 1 | plg_content_finder (3.0.0) 1 | plg_content_geshi (2.5.0) 0 | plg_content_joomla (3.0.0) 1 | plg_content_loadmodule (3.0.0) 1 | plg_content_pagebreak (3.0.0) 1 | plg_content_pagenavigation (3.0.0) 1 | plg_content_vote (3.0.0) 1 | plg_editors-xtd_article (3.0.0) 1 | plg_editors-xtd_fields (3.7.0) 1 | plg_editors-xtd_image (3.0.0) 1 | plg_editors-xtd_menu (3.7.0) 1 | plg_editors-xtd_module (3.5.0) 1 | plg_editors-xtd_pagebreak (3.0.0) 1 | plg_editors-xtd_readmore (3.0.0) 1 | plg_extension_joomla (3.0.0) 1 | plg_fields_calendar (3.7.0) 1 | plg_fields_checkboxes (3.7.0) 1 | plg_fields_color (3.7.0) 1 | plg_fields_editor (3.7.0) 1 | plg_fields_imagelist (3.7.0) 1 | plg_fields_integer (3.7.0) 1 | plg_fields_list (3.7.0) 1 | plg_fields_media (3.7.0) 1 | plg_fields_radio (3.7.0) 1 | plg_fields_sql (3.7.0) 1 | plg_fields_text (3.7.0) 1 | plg_fields_textarea (3.7.0) 1 | plg_fields_url (3.7.0) 1 | plg_fields_user (3.7.0) 1 | plg_fields_usergrouplist (3.7.0) 1 | plg_finder_categories (3.0.0) 1 | plg_finder_contacts (3.0.0) 1 | plg_finder_content (3.0.0) 1 | plg_finder_newsfeeds (3.0.0) 1 | plg_finder_tags (3.0.0) 1 | plg_finder_weblinks (3.0.0) 1 | PLG_INSTALLER_FOLDERINSTALLER (3.6.0) 1 | plg_installer_packageinstaller (3.6.0) 1 | PLG_INSTALLER_URLINSTALLER (3.6.0) 1 | plg_quickicon_extensionupdate (3.0.0) 1 | plg_quickicon_joomlaupdate (3.0.0) 1 | plg_quickicon_phpversioncheck (3.7.0) 1 | plg_search_categories (3.0.0) 0 | plg_search_contacts (3.0.0) 0 | plg_search_content (3.0.0) 0 | plg_search_contentimages (3.0.0) 1 | plg_search_newsfeeds (3.0.0) 0 | plg_search_tags (3.0.0) 1 | plg_search_weblinks (3.0.0) 0 | plg_system_cache (3.0.0) 0 | plg_system_debug (3.0.0) 1 | plg_system_fields (3.7.0) 1 | plg_system_highlight (3.0.0) 1 | plg_system_languagecode (3.0.0) 0 | plg_system_languagefilter (3.0.0) 0 | plg_system_log (3.0.0) 1 | plg_system_logout (3.0.0) 1 | plg_system_p3p (3.0.0) 1 | plg_system_redirect (3.0.0) 1 | plg_system_remember (3.0.0) 0 | plg_system_sef (3.0.0) 1 | plg_system_sessiongc (3.8.6) 1 | plg_system_stats (3.5.0) 1 | plg_system_updatenotification (3.5.0) 1 | plg_twofactorauth_totp (3.2.0) 0 | plg_twofactorauth_yubikey (3.2.0) 0 | plg_user_contactcreator (3.0.0) 0 | plg_user_joomla (3.0.0) 1 | plg_user_profile (3.0.0) 0 |
3rd Party:: AcyMailing : trigger Joomla Co (3.7.0) 1 | AcyMailing Manage text (1.0.0) 1 | AcyMailing Tag : Website links (3.7.0) 1 | AcyMailing : share on social n (1.0.0) 1 | AcyMailing : Statistics Plugin (3.7.0) 1 | AcyMailing table of contents g (1.0.0) 1 | AcyMailing Tag : CB User infor (3.7.1) 1 | AcyMailing Tag : content inser (3.7.0) 1 | AcyMailing Tag : Subscriber in (4.9.3) 1 | AcyMailing Tag : Manage the Su (4.9.3) 1 | AcyMailing Tag : Date / Time (4.9.3) 1 | AcyMailing Tag : Joomla User I (4.9.3) 1 | AcyMailing Template Class Repl (4.9.3) 1 | plg_content_jem (2.1.4.2) 1 | JoomlaXTC Image Gallery plugin (1.1.3) 1 | JoomlaXTC Modal plugin (1.0.1) 1 | JoomlaXTC Xtream Video Player (1.4.0) 1 | AcyMailing Editor (4.9.3) 1 | plg_editors_codemirror (5.38.0) 1 | plg_editors_tinymce (4.5.8) 1 | plg_finder_jem (2.1.4.2) 0 | plg_finder_k2 (2.6.9) 0 | plg_jem_comments (2.1.4.2) 0 | plg_jem_mailer (2.1.4.2) 0 | Josetta - K2 Categories (2.6.9) 1 | Josetta - K2 Items (2.6.9) 1 | plg_search_jem (2.1.4.2) 0 | Search - K2 (2.6.9) 0 | Hotel Gallery (1.0) 1 | Hotel Url Translator (5.0.0) 1 | System - K2 (2.6.9) 1 | AcyMailing : (auto)Subscribe d (4.9.3) 1 | User - K2 (2.6.9) 1 |
Templates Discovered :: wrote:Templates :: SITE :: beez3 (3.1.0) 1 | Elite (1.0.1) 1 | protostar (1.0) 1 |
Templates :: ADMIN :: hathor (3.0.0) 1 | isis (1.0) 1 |


Post Reply

Return to “Migrating and Upgrading to Joomla! 3.x”