CSRF token missing or incorrect error when using accessing from the client network
My python Django web app is deployed in the Nginx server on CentOS 7. It has some ajax POST calls. I have included header : {"X-CSRFToken": '{{ csrf_token }}'}, in every ajax post request. It was working fine when we use the application from any open network/WiFi. But when using in client network, it's failing for ajax POST calls(Intial login is fine). Django logs display the message "WARNING 2021-02-03 14:44:56,895 log 14776 140049620125504 Forbidden (CSRF token missing or incorrect.): /employee".
FYI, it's not SSL enabled and it's directly accessed with server IP, which is public.
question from:
https://stackoverflow.com/questions/66059808/csrf-token-missing-or-incorrect-error-when-using-accessing-from-client-network 与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
