I’ve changed out OAUTH provider settings, and this causes a error message “invalid CSRF tokens” and a 403 forbidden page upon a user first login.
After refreshing page, the login works fine. Alså - subsequent logins work fine.
I’m thinking this might be cauised by expired symfony sessions. Any way to clear all symfony sessions for all users? Or have anyone else experienced same problems and have a fix for this problem?