+++ This bug was initially created as a clone of Bug #719504 +++ Description of problem: Cu is getting 403 / "Request does not contain a CSRF security token" error when searching in the webUI after applying https://rhn.redhat.com/errata/RHSA-2011-0879.html, which addresses https://bugzilla.redhat.com/show_bug.cgi?id=529483. From customer: "For example if I simply opened system group I can select all systems in a list or go to the next page. But if the same systems were found with search : Go, Display, Update List,Select All buttons [on the search results page] give me 403 error." Version-Release number of selected component (if applicable): Red Hat Network (RHN) Satellite 5.4.1 How reproducible: Always. Steps to Reproduce: 1. Have a satellite with https://rhn.redhat.com/errata/RHSA-2011-0879.html applied (i.e., Satellite 5.4.1). 2. Enter a search term in web UI that results in some systems being found - e.g., use System Search with string "dhcp". 3. On the resulting results page with some systems found, try to click on any of the buttons: Go, Display, Update List, Select All. Actual results: "HTTP Status 403 - Request does not contain a CSRF security token type Status report message Request does not contain a CSRF security token description Access to the specified resource (Request does not contain a CSRF security token) has been forbidden. Apache Tomcat/6.0.24" Expected results: No error, operation succeeds. Additional info: N/A
spacewalk.git master: 416385d5d8fbda23ccf3af506e790ffae330e3e5
This bugzilla is currently MODIFIED, so we believe the fix is in the Spacewalk nightly yum repository at http://spacewalk.redhat.com/yum/nightly/ Therefore, moving ON_QA.
Spacewalk 1.5 was released.