Skip to content

CSRF token error when logging in with Google #3589

New issue
New issue
Open
Open
CSRF token error when logging in with Google#3589
Labels
Status: TriageType: Bug
@windme2

Description

@windme2
windme2
opened on Feb 9, 2026

I encountered a CSRF token verification error when trying to log in to Bolt (StackBlitz).
The error message displayed was:
“Yikes! It looks like we can't verify CSRF token.
This error can occur when you use an incognito mode. Please enable third‑party cookies and try again.”

Steps to reproduce:

  • Open Bolt/StackBlitz in Google Chrome on Windows 11.
  • Attempt to log in using [Google/GitHub] credentials.
  • Error message appears and login fails.
    Expected behavior:
    Login should succeed without CSRF token verification error.
    Actual behavior:
    Login fails with CSRF token error message.
    Additional details:
  • Browser: Google Chrome
  • OS: Windows 11
  • Mode: Normal
Image

Metadata

Metadata

Assignees

No one assigned

    Labels

    Status: TriageType: Bug

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions