We are working with AEM 6.0 & when ever we open Site admin and pages - each request loading with CSRF.js https://<<DOMAIN NAME>>/etc/clientlibs/granite/jquery/granite/csrf/source/csrf.js
How to disable this CSRF.js calling? It is happening only with AUthor when we are trying to access with DOMAIN NAME.
If I open with IP then this call is not generating.
CSRF request is triggered with every POST request. It is very important for security purposes and should not be disabled. Disabling it can be a security threat.
However, if you still want to do it then log into the OSGi console & stop the bundle "Adobe Granite CSRF Framework(com.adobe.granite.csrf)".
By disabling the bundle "Adobe Granite CSRF Framework (com.adobe.granite.csrf)", CSRF protection will be disabled. This is a security risk and should be done with caution.