Your receive the error message:
To protect against Cross-Site-Request-Forgery (CSRF/XSRF) attacks, it is required to include an CSRF token into all modifying requests (POST, PUT, PATCH, DELETE). The retrieved token is only valid within the user session. Therefore, the session cookies received while getting the token must also be included into the follow-up requests to keep the session alive.
In case an invalid token is sent, or the session is not kept, the response code is 403 Forbidden and the response body is an HTML document which contains the error message “Error: Forbidden”.
LaMa, Rest API,
Ensure that the session cookies received while getting the token is included into follow-up requests to keep the session alive.