[
https://issues.apache.org/jira/browse/ATLAS-4883?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Paresh Devalia updated ATLAS-4883:
----------------------------------
Attachment: 1-_Atlas_webUI_with_error.png
2-_Atlas_webUI_with_error.png
> Atlas UI CSRF token error
> -------------------------
>
> Key: ATLAS-4883
> URL: https://issues.apache.org/jira/browse/ATLAS-4883
> Project: Atlas
> Issue Type: Bug
> Components: atlas-core
> Reporter: Paresh Devalia
> Assignee: Paresh Devalia
> Priority: Major
> Attachments: 1-_Atlas_webUI_with_error.png,
> 2-_Atlas_webUI_with_error.png
>
>
> => Customer is facing issues , as sometimes the basic search is not working
> and the error:
> +++++
> Missing header or invalid Header value for CSRF Vulnerability Protection
> +++++
> is coming up intermittently on the right corner of the WebUI.
> Please refer to the screenshots attached to the Jira
>
> ---------------------
> Dev analysis
> steps to reproduce
> # Set the session-timeout to 1 min in web.xml file.
> # Wait for 1 min after Atlas login.
> # Do basic search and response will get as 400 error code with Missing
> header or invalid Header value for CSRF Vulnerability Protection.
> # Also while doing metric API (Statistics) call we get the 409 error code
> and it redirect to login page. Which should be a correct way.
> As the sever-side session get timed-out and user was in-active. so it get 400
> error code.
> Fix will provide redirection to login-page or any other solution.
>
>
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
