Top Menu

Jump to content
    Global modules

    Global modules

    • Home
    • Projects
    • Activity
    • Work packages
    • Gantt charts
    • Calendars
    • Team planners
    • Boards
    • News
    Home
    Home
Help
    Getting started
    • Introduction video
  • Help and support
    • Upgrade to Enterprise edition
    • User guides
    • Videos
    • Shortcuts
    • Community forum
    • Enterprise support
  • Additional resources
    • Data privacy and security policy
    • Digital accessibility (DE)
    • OpenProject website
    • Security alerts / Newsletter
    • OpenProject blog
    • Release notes
    • Report a bug
    • Development roadmap
    • Add and edit translations
    • API documentation

User menu

Sign in
Forgot your password?

or sign in with your existing account

OpenProject ID Google

Side Menu

Collapse project menu
  • Overview
  • Activity
    Activity
  • Roadmap
  • Work packages
    Work packages
  • Gantt charts
    Gantt charts
  • Calendars
    Calendars
  • Team planners
    Team planners
  • Boards
    Boards
  • News
  • Forums

Content

Expand project menu
Support Installation & Updates
  1. OpenProject Community
  2. OpenProject
  3. Forums
  4. Support Installation & Updates
  5. Error 422: Cross-Site Request Forgery Token

Error 422: Cross-Site Request Forgery Token

Added by Mathias Waack 12 months ago

Hi all, 

we are using OpenProject via docker. Until last week an nginx worked as https-proxy for the container. For external access we are using an additional dmz-proxy (apache). So the old situation is:

  1. LAN----(https)----nginx---(http)---openproject

  2. Internet----(https)---apache----(https)----nginx---(http)---openproject

This weekend we have switched from nginx to traefik, so we have the following new situation:

  1. LAN----(https)----traefik---(http)---openproject

  2. Internet----(https)---apache----(https)----traefik---(http)---openproject

The apache-config is the same in the old and the new situation. LAN works as expected, so I assume both the config of openproject and traefik are fine. 

But access from the internet via apache now results in error 422. Thus I assume there is a difference between the behavior of traefik and nginx and we have to change the apache-config somehow to get it running with traefik. 

The apache-config is real simple:

	SSLProxyEngine On
	ProxyPass        "/"  "https://project.<domain>/"
	ProxyPassReverse "/"  "https://project.<domain>/"
	SSLEngine on

Adding the line

RequestHeader set X-Forwarded-Proto "https"

to the apache config does not change the behavior. 

Does anyone has any idea to fix this?

Thanks, 
Mathias


Loading...