Thanks for the response, Peter.I have verified the Dispatcher settings.Below are the statements for reference:Under >>filter/0032 { /type "allow" /glob "* /libs/granite/csrf/token.json *"   } Under >>Cache >>rules/0999 { /glob "/libs/granite/csrf/token.json" /type "deny" }However, the servlet works ...