What hotfix version are you on? In hotfix 10.20 they improved the logging to make it easier to identify what's wrong.
- Security - Improved logging of CSRF errors -
Errors that occurred as a result of the system's CSRF protection feature were difficult to identify in certain cases. After applying the hotfix, the related error messages provide more accurate information.
Does the CSRF-error happen on your developent after you changed your code? It could be caused because you've had the page open and did a rebuild of your project and tried to do a post action which had an outdated state.
For the missing icons do you have any 404/script errors if you look at your browser console/debug tools? The icons are rendered from icon font.
I think most of it is referenced via
And the fonts used for the icons are located at:
/App_Themes/Default/Fonts/Core-icons.woff (also ...icons.eot , ...icons.svg and ...icons.ttf)
depending on your browser and the like it will pick one for you.
So I think it could be an issue with your IIS not allowed to return these filetypes.
- So first check if all files are present
- than you might want to check the "MIME Types" module in IIS to see if it allows these types