RussellW6092 Member since 2018 4 posts
Vodafone UK Ltd
Posted: 1 year ago
Last activity: 8 months ago

CSRF Enablement Causes HTTP 400 Error on Attempted Login


When enabling CSRF we are recieving a HTTP 400 error while attempting to login with users which do not belong to 2 of 6 user groups.

Error Description: The server cannot or will not process the request due to something that is perceived to be a client error (e.g., malformed request syntax, invalid request message framing, or deceptive request routing).

Alert found in PegaRULES-ALERT.log: Unable to create requestor

Without CRSF Enabled we are able to successfully login, and seems to be no correlation between the Access Group and the error as duplicating working User Groups shows the same error.

Has anyone come across this issue before?

***Moderator Edit-Vidyaranjan: Updated SR details***

Pega Platform Security SR Exists
Share this page LinkedIn