I have downloaded XAMPP lime survey and created a survey on local host.
When I try to access it using REMOTE CONTROL API it gives me the following error


<body>
<h1>Bad Request</h1>
<h2>The CSRF token could not be verified.</h2>
<p>
The request could not be understood by the server due to malformed syntax.
Please do not repeat the request without modifications.
</p>
<p>
If you think this is a server error, please contact the webmaster.
</p>



This is my code in java

HttpPost post = new HttpPost("http://192.168.8.100//index.php/admin/remotecontrol");
post.setHeader("Content-type", "application/json");
try {
post.setEntity( new StringEntity("{\"method\": \"get_session_key\", \"params\": [\"admin\", \"password\" ], \"id\": 1}"));
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
try {
HttpResponse response = client.execute(post);
if(response.getStatusLine().getStatusCode() == 200){
HttpEntity entity = response.getEntity();
Log.d("vall",EntityUtils.toString(entity));
String sessionKey = parse(EntityUtils.toString(entity));
post.setEntity( new StringEntity("{\"method\": \"list_groups\", \"params\": [ \""+sessionKey+"\", \"578915\" ], \"id\": 1}"));
response = client.execute(post);
if(response.getStatusLine().getStatusCode() == 200){
entity = response.getEntity();
Log.d("outputt",EntityUtils.toString(entity));
}
}

I don't know the remote control API, but in general, you use a post request to post information (and in general, to do that you need a CSRF token), and to get an information you use a GET request.

Reading your code, it seems you're using a post request to get the key...

www.w3schools.com/TAGS/ref_httpmethods.asp

(still not sure it will solve your problem, just a general approach)

Automatically populating $HTTP_RAW_POST_DATA is deprecated and will be removed in a future version. To avoid this warning set 'always_populate_raw_post_data' to '-1' in php.ini and use the php://input stream instead. in <b>Unknown</b> on line <b>0</b><br />
<br />
<b>Warning</b>: Cannot modify header information - headers already sent in <b>Unknown</b> on line <b>0</b><br />


this is the error im receiving now

In fact CRSF token must be disable for this part in internal.php
github.com/LimeSurvey/LimeSurvey/blob/ma...ig/internal.php#L114

We can not use CRSF token : usage is to
1 : add a session value
2: add an hidden input box with the session value
3: control if sessionValue==postedValue

Did you update the request part in config ?
Denis

Hello Denis,
I've resolved those issues.

I have a couple of questions now?

1. The Iss or Isa file representing the Survey structure, How do I view or use them?

2. Is there an API to view the selectable answer to a question such as multiple choice or radio choice question?

Thanks

sheraz wrote: Hello Denis,
I've resolved those issues.
....

It can be great to explain how you fix it .....

1. The Iss or Isa file representing the Survey structure, How do I view or use them?

lss is XML , then an XML viewer or a text editor. lsa is a zip archive with lss + token.csv + responses.(don 't remind the format). Unzip it and look at the file.

2. Is there an API to view the selectable answer to a question such as multiple choice or radio choice question?

Don't know

I am getting same error how you resolve this error plz explain in details.

OK I solved my self.

manavaahuja07 wrote: OK I solved my self.

Can you explain the issue ?
Maybe you can improve LimeSUrvey or manual for all other user's ?

@all, if you asked for help here and later successfully fixed such issues, then please tell others how you did that. That is how a forum from users to users should work.

Thanks!

Can somebody tell me how to solve this issue?

JackAttack wrote: Can somebody tell me how to solve this issue?

So which Limesurvey version do you use and when exactly does that error show up?

Can you easily reproduce it? If so, what are the steps to do so?