trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

website/docs: add troubleshooting for CSRF 

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
This commit is contained in:
Jens Langhammer 2023-02-02 11:09:00 +01:00
parent 095cb75d6c
commit cadb710c38
No known key found for this signature in database
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
website/docs/troubleshooting/csrf.md Normal file
View File

@ -0,0 +1,9 @@
---
title: Troubleshooting CSRF Errors
---
With some proxy setups, you might run into CSRF errors when attempting to create/save objects in authentik. This is usually caused by either the _Origin_ or _Host_ header being incorrect.
Open the system info API endpoint of your authentik instance by going to *https://authentik.company/api/v3/admin/system/*. Take note of the value of _HTTP_HOST_, make sure it matches the domain you're accessing authentik at, and make sure it does _not_ include any port numbers.
When submitting a POST request by updating/creating an object, open the browser's developer tools and check the _Network_ tab. Open the POST request and look at the request headers. Make sure the value of _Origin_ matches your authentik domain, without any ports.

1
website/sidebars.js
View File

@ -280,6 +280,7 @@ module.exports = {
}, },
}, },
"troubleshooting/access", "troubleshooting/access",
"troubleshooting/csrf",
"troubleshooting/emails", "troubleshooting/emails",
"troubleshooting/login", "troubleshooting/login",
"troubleshooting/image_upload", "troubleshooting/image_upload",