Facebook oauth on mobile site CSRF state token does not match one provided?

This may not be useful as I am using IIS and ASP.NET sessions, but I suspect you might be seeing the same inconsistencies I have observed. I see problems with IE 6 and some specific mobile browsers, particularly the UP. Browser, not retaining session state on redirects.

In ASP.NET the SessionID is usually stored in a browser cookie, and some of these mobile devices are not retaining the cookie. I see them get multiple SessionID values issued during one Session. Without the persistent SessionID they lose the ability to get the stored state value and the whole thing falls apart.

I believe this was an IIS issue. I moved the exact same code over to a Linux server and it worked just fine.

I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.