Article ID: 127243, created on Oct 26, 2015, last review on Oct 26, 2015

  • Applies to:
  • Odin Business Automation Standard 4.5

Symptoms

After OBAS upgrade to 4.5.5-31 version it is not possible to login via nginx reverse proxy server anymore. Nginx reverse proxy server was used to protect access via IP-Access Lists and GeoIP validation.

Cause

New implementation of security (including Cross-Site Request Forgery) protection.

Resolution

To find more information about new feature follow the link to documentation:

Managing OBAS Screens That Open Without HTTP Referrer Passed

To disable a new implementation of security protection:

  1. Add the following string to the end of /etc/hspc/hspc.conf :

    SKIP_CHECK_HTTP_REFERER = 1
    
  2. Restart hspcd service:

    #service hspcd restart 
    

Search Words

referer

CSRF

SKIP_CHECK_HTTP_REFERER

OBAS Reverse Proxy

624ca542e40215e6f1d39170d8e7ec75 caea8340e2d186a540518d08602aa065 400e18f6ede9f8be5575a475d2d6b0a6 70a5401e8b9354cd1d64d0346f2c4a3e

Email subscription for changes to this article
Save as PDF