Skip to end of metadata
Go to start of metadata

Symptom

Your receive the error message:

403 Forbidden

Error: Forbidden

Problem

To protect against Cross-Site-Request-Forgery (CSRF/XSRF) attacks, it is required to include an CSRF token into all modifying requests (POST, PUT, PATCH, DELETE). The retrieved token is only valid within the user session. Therefore, the session cookies received while getting the token must also be included into the follow-up requests to keep the session alive.

In case an invalid token is sent, or the session is not kept, the response code is 403 Forbidden and the response body is an HTML document which contains the error message “Error: Forbidden”.

Keywords

LaMa, Rest API,

Solution

Ensure that the session cookies received while getting the token is included into follow-up requests to keep the session alive.

  • No labels