Question

2
Replies
169
Views
Russell Welton (RussellW6092)
Vodafone UK Ltd

Vodafone UK Ltd
GB
RussellW6092 Member since 2018 5 posts
Vodafone UK Ltd
Posted: September 4, 2019
Last activity: January 24, 2020
Posted: 4 Sep 2019 3:58 EDT
Last activity: 24 Jan 2020 6:09 EST
Closed

CSRF Enablement Causes HTTP 400 Error on Attempted Login

Hi,

When enabling CSRF we are recieving a HTTP 400 error while attempting to login with users which do not belong to 2 of 6 user groups.

Error Description: The server cannot or will not process the request due to something that is perceived to be a client error (e.g., malformed request syntax, invalid request message framing, or deceptive request routing).

Alert found in PegaRULES-ALERT.log: Unable to create requestor

Without CRSF Enabled we are able to successfully login, and seems to be no correlation between the Access Group and the error as duplicating working User Groups shows the same error.

Has anyone come across this issue before?

***Moderator Edit-Vidyaranjan: Updated SR details***

Pega Platform Security Support Case Exists
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.