HTTP Status 403 - Invalid CSRF-token

cancel
Showing results for 
Search instead for 
Did you mean: 
gawadesk
Established Member

HTTP Status 403 - Invalid CSRF-token

Jump to solution

While connecting to Activiti from ADF I am getting below error :

Access to the specified resource has been forbidden.

Invalid CSRF-token

http://127.0.0.1:9090/activiti-app/app/authentication 403 (Forbidden)

1 Solution

Accepted Solutions
ohej
Established Member II

Re: HTTP Status 403 - Invalid CSRF-token

Jump to solution

We've identified this issue here: CSRF Token is not working · Issue #128 · Alfresco/alfresco-js-api · GitHub 

A workaround is to disable CSRF in Activiti. Put this in your activiti-app.properties:

security.csrf.disabled=true

Let me know if this works.

View solution in original post

3 Replies
mromano
Alfresco Employee

Re: HTTP Status 403 - Invalid CSRF-token

Jump to solution

Hi,

Did you try to switch off the csrf option (top left of the page)?

in case you tried can you share with us what you see in the console log of your browser?

Thank you,

Mario

ohej
Established Member II

Re: HTTP Status 403 - Invalid CSRF-token

Jump to solution

We've identified this issue here: CSRF Token is not working · Issue #128 · Alfresco/alfresco-js-api · GitHub 

A workaround is to disable CSRF in Activiti. Put this in your activiti-app.properties:

security.csrf.disabled=true

Let me know if this works.

jayesh_prajapat
Established Member

Re: HTTP Status 403 - Invalid CSRF-token

Jump to solution

Hi Ole Hejlskov
I am facing exact same issue with APS 1.8.1 and APW 1.3.1

Could you please suggest some check points?

Note: with workaround to disable CSRF, I could login.

The Archive