A client was having problems today with their couch site stating that they couldn't edit any posts. I logged in and tried to edit a post but kept getting "Security tokens do not tally for executing this action. Please try again."

Okay, so i figured my session is expired or what have you and I need to login again, however when i go to /couch i get the admin screen without logging in but when I click on anything "Security tokens do not tally for executing this action. Please try again". I can't even logout, when I click logout "Security tokens do not tally for executing this action. Please try again" What the? This has been working flawlessly for months now but now for whatever reason nobody can login, edit or logout.. very frustrating.

I am using "v1.4.5 (build 20150707)" The website is currently down as the posts the client tried to edit are now malformed garbage (missing portions of the post causing all kinds of ugliness)

I would like to reiterate that no code changes or even markup/css changes have occurred at all and I even restored from my repo to make sure.

[KK]

Hi,

If you could PM me the FTP+Couch access code to the site I'll take a look and try to find what is going wrong.

Hope you have a database backup, though, as somehow I have a feeling that there are some corrupt tables at work here.

Hi,

If you could PM me the FTP+Couch access code to the site I'll take a look and try to find what is going wrong.

Hope you have a database backup, though, as somehow I have a feeling that there are some corrupt tables at work here.

Uh.. no. I don't give out access to client's servers. That would be unbelievable unprofessional.

[KK]

I totally understand.
But then, willing as I am, I'm not sure how I can help you. Nothing like this has been reported before so I've nothing concrete to go by in trying to figure out the problem.

I suggest you try accessing the admin-panel using a different browser. Since this will not use any previous cookies, you should get the login prompt. Login and please let me know how things go.

I totally understand.
But then, willing as I am, I'm not sure how I can help you. Nothing like this has been reported before so I've nothing concrete to go by in trying to figure out the problem.

I suggest you try accessing the admin-panel using a different browser. Since this will not use any previous cookies, you should get the login prompt. Login and please let me know how things go.

I've tried that, it happens on fresh browsers. A google search came up with numerous occurrences of this problem but no answers for me. To be honest, if a customer can break this CMS with routine use and a moderator at the support forum doesn't have any suggestions for an error rendered by said system it completely destroys my faith in said CMS. I guess I will just replace this with a simple php routine and never use the product again. Thanks for your time though.

@leotemp,
In my experience, a sudden unexplained failure like this is most likely a result of something happening on the server: maybe a disk failure or else some sort of update or maintenance in the background.

With respect, don't let your understandable frustration get the better of you. @KK did offer 2 suggestions. He offered to personally troubleshoot the issue, and he suggested that your database backup may be what saves the day.

When I share credentials with @KK, I set up an ftp user specifically for him. It is limited just to the folders on the server he needs to access. When he's done troubleshooting, I delete the user. The same applies to giving access to the admin panel. It's not that I don't trust him, it's just a security protocol.

Your responsibility toward your client's privacy and security are totally appropriate. In my own view, though, giving a trusted professional targeted access to their files for troubleshooting isn't a breach of trust. It's just the sort of thing they need your help with.

The best of luck to you.