Vulnerability in EPiServer.Forms
I have a page with the following properties:
The video have a custom attribute that validates that the editor must set a value for either video or image.
When I clear either video or image I and then proceed to create a new block in the content area, I'm unable to create a block in the content area. In my console Episerver responds with a http 409 error (Conflict). Which makes sense because the page in an invalid state. But I think this is an error as editors should still be allowed to continue adding blocks to the content area.
Does anyone know if this is a bug or if there is a way to get pass it?
This looks suspiciously like this issue here:
If so, the issue is that the Episerver services use non-200 response codes when returning data to the client and, if your error configuration intercepts these responses, the client will error. Setting the "existingResponse" mode on the <httperrors> element to "PassThrough" should resolve the issue though, to avoid impacting the rest of your site, you may want to specify this just for <location path="EPiServer">. For example (cut down for clarity):
<httpErrors errorMode="Custom" existingResponse="PassThrough">
Hope that helps.
thanks for the example. I've used the snipped but unfortuantly still getting the 409 error.
If you are using a version earlier than 11.8 this can be caused by a custom validator which fires a validation message, but is not displayed due to bug Bug - CMS-11522
Read more on https://world.episerver.com/support/Bug-list/bug/CMS-11522