Paresh Devalia created ATLAS-4883:
-------------------------------------
Summary: Atlas UI CSRF token error
Key: ATLAS-4883
URL: https://issues.apache.org/jira/browse/ATLAS-4883
Project: Atlas
Issue Type: Bug
Components: atlas-core
Reporter: Paresh Devalia
Assignee: Paresh Devalia
Attachments: 1-_Atlas_webUI_with_error.png,
2-_Atlas_webUI_with_error.png
=> Customer is facing issues , as sometimes the basic search is not working and
the error:
+++++
Missing header or invalid Header value for CSRF Vulnerability Protection
+++++
is coming up intermittently on the right corner of the WebUI.
Please refer to the screenshots attached to the Jira
---------------------
Dev analysis
steps to reproduce
# Set the session-timeout to 1 min in web.xml file.
# Wait for 1 min after Atlas login.
# Do basic search and response will get as 400 error code with Missing header
or invalid Header value for CSRF Vulnerability Protection.
# Also while doing metric API (Statistics) call we get the 409 error code and
it redirect to login page. Which should be a correct way.
As the sever-side session get timed-out and user was in-active. so it get 400
error code.
Fix will provide redirection to login-page or any other solution.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
