I am calling my servlet from external application creating a Ajax call invoking csrf token and uploading asset to them.
I get 403 while invoking the servlet. If I remove post from referrer it works. Is there any way to remove post restriction for particular servlet ?
And if I remove Auth req to the servlet how does it upload file to dam. I am sending csrf token in the header for the servlet to add file to DAM. Will it not impact?
Did you updated the Apache Sling Referrer Filter configuration in order to add host (Allow Hosts property)which can post to aem