Unable to create user after AEM upgrade from 6.0 to 6.1

Avatar

Avatar
Validate 10
Level 3
anilkum
Level 3

Likes

3 likes

Total Posts

65 posts

Correct reply

1 solution
Top badges earned
Validate 10
Validate 1
Boost 3
Boost 1
Affirm 1
View profile

Avatar
Validate 10
Level 3
anilkum
Level 3

Likes

3 likes

Total Posts

65 posts

Correct reply

1 solution
Top badges earned
Validate 10
Validate 1
Boost 3
Boost 1
Affirm 1
View profile
anilkum
Level 3

16-09-2016

Hi,

We are unable to create user after upgrading from AEM 6.0 SP2 to AEM 6.1 SP1

We are getting the following error:

POST /libs/granite/security/post/authorizables.html HTTP/1.1 com.adobe.granite.csrf.impl.CSRFFilter isValidRequest: empty CSRF token - rejecting

POST /libs/granite/security/post/authorizables.html HTTP/1.1 com.adobe.granite.csrf.impl.CSRFFilter doFilter: the provided CSRF token is invalid

POST /libs/granite/security/post/authorizables.html HTTP/1.1 com.day.cq.wcm.core.impl.components.ComponentCacheImpl No component node found at /libs/granite/security/post/authorizables.servlet

All the bundles are in active state.

Regards,

Anil

Replies

Avatar

Avatar
Boost 5
Employee
vmehrotr
Employee

Likes

19 likes

Total Posts

43 posts

Correct reply

5 solutions
Top badges earned
Boost 5
Boost 3
Boost 10
Boost 1
Applaud 5
View profile

Avatar
Boost 5
Employee
vmehrotr
Employee

Likes

19 likes

Total Posts

43 posts

Correct reply

5 solutions
Top badges earned
Boost 5
Boost 3
Boost 10
Boost 1
Applaud 5
View profile
vmehrotr
Employee

16-09-2016

If you are accessing via dispatcher 

following should be added to your author-farm.any on Dispatcher, under the /clientheaders section:

"CSRF-Token"

"Referer"

Without these, HTTP POST operations will fail.

https://docs.adobe.com/docs/en/dispatcher/security-checklist.html#par_title

Avatar

Avatar
Validate 10
Level 3
anilkum
Level 3

Likes

3 likes

Total Posts

65 posts

Correct reply

1 solution
Top badges earned
Validate 10
Validate 1
Boost 3
Boost 1
Affirm 1
View profile

Avatar
Validate 10
Level 3
anilkum
Level 3

Likes

3 likes

Total Posts

65 posts

Correct reply

1 solution
Top badges earned
Validate 10
Validate 1
Boost 3
Boost 1
Affirm 1
View profile
anilkum
Level 3

16-09-2016

vmehrotr wrote...

If you are accessing via dispatcher 

following should be added to your author-farm.any on Dispatcher, under the /clientheaders section:

"CSRF-Token"

"Referer"

Without these, HTTP POST operations will fail.

https://docs.adobe.com/docs/en/dispatcher/security-checklist.html#par_title

 

I am trying to create users from AEM console.. so should it not be handled automatically?

Avatar

Avatar
Boost 5
Level 3
MaxBarrass
Level 3

Likes

18 likes

Total Posts

42 posts

Correct reply

4 solutions
Top badges earned
Boost 5
Boost 3
Boost 10
Boost 1
Affirm 3
View profile

Avatar
Boost 5
Level 3
MaxBarrass
Level 3

Likes

18 likes

Total Posts

42 posts

Correct reply

4 solutions
Top badges earned
Boost 5
Boost 3
Boost 10
Boost 1
Affirm 3
View profile
MaxBarrass
Level 3

23-11-2016

see headers in "CSRF Request in Scripts" example in https://github.com/wildone/aem-links/blob/master/curl_cheatsheet.md