[ https://issues.apache.org/jira/browse/ATLAS-4883?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Paresh Devalia updated ATLAS-4883: ---------------------------------- Attachment: 1-_Atlas_webUI_with_error.png 2-_Atlas_webUI_with_error.png > Atlas UI CSRF token error > ------------------------- > > Key: ATLAS-4883 > URL: https://issues.apache.org/jira/browse/ATLAS-4883 > Project: Atlas > Issue Type: Bug > Components: atlas-core > Reporter: Paresh Devalia > Assignee: Paresh Devalia > Priority: Major > Attachments: 1-_Atlas_webUI_with_error.png, > 2-_Atlas_webUI_with_error.png > > > => Customer is facing issues , as sometimes the basic search is not working > and the error: > +++++ > Missing header or invalid Header value for CSRF Vulnerability Protection > +++++ > is coming up intermittently on the right corner of the WebUI. > Please refer to the screenshots attached to the Jira > > --------------------- > Dev analysis > steps to reproduce > # Set the session-timeout to 1 min in web.xml file. > # Wait for 1 min after Atlas login. > # Do basic search and response will get as 400 error code with Missing > header or invalid Header value for CSRF Vulnerability Protection. > # Also while doing metric API (Statistics) call we get the 409 error code > and it redirect to login page. Which should be a correct way. > As the sever-side session get timed-out and user was in-active. so it get 400 > error code. > Fix will provide redirection to login-page or any other solution. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)