You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@airflow.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2020/06/16 09:41:00 UTC
[jira] [Commented] (AIRFLOW-2866) Missing CSRF Token Error on Web
RBAC UI Create/Update Operations
[ https://issues.apache.org/jira/browse/AIRFLOW-2866?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17136484#comment-17136484 ]
ASF GitHub Bot commented on AIRFLOW-2866:
-----------------------------------------
WesleyBatista commented on pull request #3804:
URL: https://github.com/apache/airflow/pull/3804#issuecomment-644655672
Having this issue in **v1.10.10**
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
> Missing CSRF Token Error on Web RBAC UI Create/Update Operations
> ----------------------------------------------------------------
>
> Key: AIRFLOW-2866
> URL: https://issues.apache.org/jira/browse/AIRFLOW-2866
> Project: Apache Airflow
> Issue Type: Bug
> Components: ui
> Affects Versions: 2.0.0
> Reporter: Jasper Kahn
> Priority: Major
> Labels: webapp
> Fix For: 1.10.2
>
>
> Attempting to modify or delete many resources (such as Connections or Users) results in a 400 from the webserver:
> {quote}{{Bad Request}}
> {{The CSRF session token is missing.}}{quote}
> Logs report:
> {quote}{{[2018-08-07 18:45:15,771] \{csrf.py:251} INFO - The CSRF session token is missing.}}
> {{192.168.9.1 - - [07/Aug/2018:18:45:15 +0000] "POST /admin/connection/delete/ HTTP/1.1" 400 150 "http://localhost:8081/admin/connection/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.84 Safari/537.36"}}{quote}
> Chrome dev tools show the CSRF token is present in the request payload.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)