Anyone else with CSRF issues in 4.0? Seems to be a very small number of Chrome users

[Cantor, Scott]

On 6/24/20, 2:21 PM, "users on behalf of Redman, Chad" <users-bounces at shibboleth.net on behalf of chad_redman at unc.edu> wrote:

> Anyone else seeing similar issues?

Haven't deployed it yet (if I ever do), but they sound somewhat like CSRF-based manifestations of the issues people have complained about with Chrome for years, due to prefetching and replaying of requests.

-- Scott