Nathan Gough created NIFI-8510: ---------------------------------- Summary: CSRF filter blocking requests that contain unrelated cookies Key: NIFI-8510 URL: https://issues.apache.org/jira/browse/NIFI-8510 Project: Apache NiFi Issue Type: Bug Components: Security Affects Versions: 1.14.0 Reporter: Nathan Gough Assignee: Nathan Gough Fix For: 1.14.0
The CSRF filter added in NIFI-7870 is blocking requests if ANY cookie is present in a request to NiFi and the NiFI CSRF cookie is not present. This caused a 403 for requests over http on localhost. -- This message was sent by Atlassian Jira (v8.3.4#803005)