CSRF issues on the Tyk Dashboard occur when the x-csrf-token header is not a cryptographic pair with the csrf-token cookie.
This can happen if cookies are cleared while a session is logged in to the dashboard and that session is continued.
To resolve the issue
- Logout of the Tyk Dashboard
- Close the browser tab with the Tyk Dashboard login screen present.
- Navigate to the cookie store of the browser being used
- Remove all cookies for the site used to access the Tyk Dashboard
- Reopen the Tyk Dashboard login screen
- Refresh the Tyk Dashboard login screen
- Login and use the Tyk Dashboard as usual.
This should ensure that the csrf_token cookie is refreshed and matches the x-csrf-token header as it should
Comments
0 comments
Please sign in to leave a comment.