422 when signing in

There's a relatively high occurrence of 422 errors with POST requests to the SessionsController#create action over the past few days, notably post-migration. These all have the same error:

ActionController::InvalidAuthenticityToken: ActionController::InvalidAuthenticityToken

https://log.gitlab.net/goto/caec13a136b7778c18cde9c66cd5228c (internal)

Strangely, clearing cookies/cache doesn't work, and most seem to be Firefox users who have success after trying Chrome. We've been having a hard time pinning this one down.

Tickets (internal):

https://gitlab.zendesk.com/agent/tickets/101842
https://gitlab.zendesk.com/agent/tickets/101862
https://gitlab.zendesk.com/agent/tickets/101987
https://gitlab.zendesk.com/agent/tickets/101960

Edited Aug 16, 2018 by DeAndre Harris