"CSRF verification failed" with HAProxy SSL Offloading

Cris70 · January 17, 2024, 1:50pm

Hi everybody,
I’m using Haproxy to offload SSL so that I can connect using HTTPS to a service (running in my backend) which is HTTP only.
It seems to work correctly, as the landing page displays correctly.
However, as soon as I try to login (the service offers an administration page) I get the error “CSRF verification failed”.
The backend service is written in django: I’m not fluent in django and, if possible, I’d like not to have to contact the original programmer who wrote the service.
Can you help me understand the issue and see if I have any way out without modifying the service code?

Thank you in advance!
Cris

davide · February 14, 2024, 9:00am

Hi Cris,
Did you solve it?

I have some problem.

Cris70 · February 14, 2024, 9:17am

Hi Davide, yes I solved it.
I had the problem with a dockerized application that was in development.
It used the django internal server, and that is what was causing the problem.
I rebuilt the docker image using uwsgi and nginx and now it is working fine.

Topic		Replies	Views
SSL offloading not working for website that is reverting to HTTP Help!	1	892	July 20, 2019
SSL Offloading not working Help!	1	577	February 28, 2019
SSL Protocol Errors when not offloading Help!	5	1433	June 18, 2022
Need help with a unique setup Help!	0	299	September 23, 2022
Backend server ssl verification error Help!	3	1405	May 13, 2022

"CSRF verification failed" with HAProxy SSL Offloading

Related Topics