Infos:
- Used Zammad version:
6.2.0-1703848222.b78c3a07.jammy - Used Zammad installation type: (source, package, docker-compose, …)
Package - Operating system:
Ubuntu Server 22.04.3 - Browser + version:
Firefox, Chrome
Expected behavior:
- Able to log in
Actual behavior:
- Logging in produces error:
CSRF token verification failed
Steps to reproduce the behavior:
- Hello. I have our instance set up and working properly with Letsencrypt.
HTTP redirects to HTTPS properly.
However if I enable https under System/HTTP type I get the error CSRF token verification failed when trying to log into another session. If I leave it as http everything is working as expected.
What is the function of this setting and is it safe to leave it set to http?
Under both settings the browser is accessing the page using https.
Thanks