sysfu
Explorer
- Joined
- Jun 16, 2011
- Messages
- 73
I like to keep the send http referer header option disabled in my web browsers for privacy reasons. I noticed that this breaks FreeNAS web gui logins however.
Can this please be fixed so that logins can be made without sending the http referer header?
Below is the error message.
Forbidden (403)
CSRF verification failed. Request aborted.
You are seeing this message because this HTTPS site requires a 'Referer header' to be sent by your Web browser, but none was sent. This header is required for security reasons, to ensure that your browser is not being hijacked by third parties.
If you have configured your browser to disable 'Referer' headers, please re-enable them, at least for this site, or for HTTPS connections, or for 'same-origin' requests.
More information is available with DEBUG=True.
Can this please be fixed so that logins can be made without sending the http referer header?
Below is the error message.
Forbidden (403)
CSRF verification failed. Request aborted.
You are seeing this message because this HTTPS site requires a 'Referer header' to be sent by your Web browser, but none was sent. This header is required for security reasons, to ensure that your browser is not being hijacked by third parties.
If you have configured your browser to disable 'Referer' headers, please re-enable them, at least for this site, or for HTTPS connections, or for 'same-origin' requests.
More information is available with DEBUG=True.