I have created a course with a verified track. A student has enrolled in the course (in the audit track) and I have manually verified his ID. Now he is trying to upgrade his enrollment to a verified track (from /verify_student/upgrade/course-ID page) Whenever he clicks on the “Checkout” button,

image2034×358 31.5 KB

he gets this error:

image722×330 16.7 KB

In my lms.log I get these messages:

Feb 21 22:06:17 edx-mooc [service_variant=lms][django.security.csrf][env:sandbox] WARNING [edx-mooc 26919] [csrf.py:160] - Forbidden (CSRF token missing or incorrect.): /verify_student/upgrade/course-v1:UEU+proba02+2020_04/

Feb 21 22:08:07 edx-mooc [service_variant=lms][lms.djangoapps.verify_student.views][env:sandbox] INFO [edx-mooc 26919] [views.py:289] - Entering payment and verification flow for user ‘21’, course ‘course-v1:UEU+proba02+2020_04’, with current step ‘None’.

I have checked that the CSRF token is sent as a cookie

image828×572 72.7 KB

image1068×900 118 KB

Any help will be greatly appreciated.

Never mind, I think that the main problem is that I haven’t activated the CyberSource E-commerce module. The error message is deceiving, though.

I’m trying to set the course fee in my VM machine. And I got the same CSRF error. After pressing the Payment button.
My log shows as below . Do you have some suggestion ?

========================================================================
Jul 23 16:30:01 xyaw-VirtualBox [service_variant=lms][openedx.core.lib.log_utils][env:sandbox] INFO [xyaw-VirtualBox 17182] [log_utils.py:36] - ApiKeyHeaderPermission used: ip=“127.0.0.1”, path="/notifier_api/v1/users/"
Jul 23 16:35:02 xyaw-VirtualBox [service_variant=lms][openedx.core.lib.log_utils][env:sandbox] INFO [xyaw-VirtualBox 17187] [log_utils.py:36] - ApiKeyHeaderPermission used: ip=“127.0.0.1”, path="/notifier_api/v1/users/"
Jul 23 16:36:13 xyaw-VirtualBox [service_variant=lms][openedx.core.djangoapps.catalog.utils][env:sandbox] WARNING [xyaw-VirtualBox 17187] [utils.py:103] - Failed to get program UUIDs from the cache for site xhome.twshop.asia.
Jul 23 16:36:35 xyaw-VirtualBox [service_variant=lms][audit][env:sandbox] INFO [xyaw-VirtualBox 17180] [models.py:2245] - Login success - user.id: 13
Jul 23 16:36:35 xyaw-VirtualBox [service_variant=lms][openedx.core.djangoapps.catalog.utils][env:sandbox] WARNING [xyaw-VirtualBox 17197] [utils.py:103] - Failed to get program UUIDs from the cache for site xhome.twshop.asia.
Jul 23 16:36:37 xyaw-VirtualBox [service_variant=lms][py.warnings][env:sandbox] WARNING [xyaw-VirtualBox 17193] [init.py:1564] - /edx/app/edxapp/venvs/edxapp/local/lib/python2.7/site-packages/pkg_resources/init.py:1145: DeprecationWarning: Use of … or absolute path in a resource path is not allowed and will raise exceptions in a future release.
self, resource_name
Jul 23 16:36:43 xyaw-VirtualBox [service_variant=lms][django.security.csrf][env:sandbox] WARNING [xyaw-VirtualBox 17197] [csrf.py:160] - Forbidden (CSRF token missing or incorrect.): /shoppingcart/

Hello @Juanan hope you are doing well

have you resolved this issue ?