Anyway that I can cancel the header `kbn-xsrf` verify in POST method

whoami · February 23, 2017, 3:54am

anyway that I can cancel the header kbn-xsrf verify in POST method? I am adding some api in my own plugin, and its nothing about kibana, so I want there is no necessary to check kbn-xsrf header

lukas · February 23, 2017, 3:36pm

You could add the following in your config:

server.xsrf.disableProtection: true

Note that this is not recommended for production because it leaves your application open to XSRF attacks.

system · March 23, 2017, 3:36pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kibana uses the kbn-version and kbn-name headers to prevent XSRF attacks Kibana	3	1101	July 9, 2021
Not able to send post request from form Kibana	3	3971	April 23, 2018
Getting Bad Request with message Request must contain a kbn-xsrf header Kibana	2	2237	November 23, 2018
Where can I get the correct kbn-xsrf value for my plugin HTTP requests? Kibana	3	10055	December 27, 2018
Request must contain a kbn-xsrf header Kibana	2	38699	September 13, 2017

Anyway that I can cancel the header `kbn-xsrf` verify in POST method

Related topics