Dear experts,
our customer is facing the issue, that they can't do imports from NWDS to PI anymore after PI has been updated.
NWDS: 7.31 SP 05 Patch 003
PI Java only: 7.31 SP14 (updated from SP Stack 6)
Everytime they want to import content into their productive system they receive a http 403 returncode saying "XSRF violation" and nothing more.
And that's all the Java logs are telling us, too. Default trace says nothing - application log just notices the XSRF violation.
I know there have been some security changes in the implemented SPs that most probably cause this message.
Of course I've already googled and searched through OSS and SCN - but we're not sure how to handle this situation.
Could it be necessary to update the NWDS, too?
Or is it possible to turn off the XSRF mechanism?
I've found note 1894606 (not really applying to our situation but) describing the parameter xsrf.protection.enabled to be set to false.
Unfortunately I can't find such a parameter anywhere in NWA and I'm really not sure if disabling XSRF makes sense.
Does anybody know, how to handle this?
Many thanks in advance!
Regards
Marie