Timeline for Security Patch SUPEE-9767 - Possible issues?
Current License: CC BY-SA 3.0
8 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Aug 22, 2017 at 14:58 | comment | added | Disciple of One | Does anyone know if this is resolved in SUPEE-9767 v2? | |
| Jun 7, 2017 at 21:35 | comment | added | cmtickle | I resolved this issue, explanation here: magento.stackexchange.com/questions/177942/… | |
| Jun 7, 2017 at 18:42 | comment | added | cmtickle | I'm also encountering this issue. I'll let you know if I find a fix. | |
| Jun 7, 2017 at 12:52 | comment | added | Stjepan | That is correct, patch does break add to cart action for EE version of the Magento. Basically, the issue occurs due to PageCache module having one version of form_key generation logic, while the session has its own. When FPC has the cached version of the requested page, but needs to regenerate minicart, session is triggered which regenerates form_key at the same time FPC save is called which generates its own form_key. At that point session value of form_key differs from one stored in customer cookie (used in FPC processor) so you are getting invalid key on add to cart controller. | |
| S Jun 7, 2017 at 3:20 | history | suggested | Rafael Corrêa Gomes | CC BY-SA 3.0 | Improving the understanding |
| Jun 6, 2017 at 21:44 | review | Suggested edits | |||
| S Jun 7, 2017 at 3:20 | |||||
| Jun 5, 2017 at 15:21 | review | First posts | |||
| Jun 5, 2017 at 17:22 | |||||
| Jun 5, 2017 at 15:18 | history | answered | Disciple of One | CC BY-SA 3.0 |