Invalid Security Token

Problem: You get this error in the Admin panel when logging in on performing operations

There are a few possible causes of the problem, all linked to the Session:

  • Try reloading your browser to get a fresh token

  • Try clearing your browser session cookies, Try logging out and back in.

  • Ensure you are running under SSL and a HTTPS URL if you have true set in Grav's system.yaml

  • Check that PHP has the correct tmp path set up. This can be set in PHP directly, or by setting Grav's system.yaml session.path setting (it can also be set via Admin, in the System Configuration) Reported issue

  • Make sure your web server config is right and includes the query string Reported issue

Found errors? Think you can improve this documentation? Simply click the Edit link at the top of the page, and then the icon on Github to make your changes.