- Used Zammad version: Version 3.2.x (3.2.0-1576861015.528479ce.bionic)
- Used Zammad installation source: DEB
- Operating system: Ubuntu 18.04.3 LTS
- Browser + version: Chrome, Firefox, Edge
- Integrations: LDAP with AD (MS Server 2019)
- 20 Active User - 2 Agents
- 4 vCores & 8 GB RAM
- Sophos XG WAF as SSL terminator - Sophos to Zammad with http.
Expected behavior:
Users can log on at any time.
Actual behavior:
Users cannot log in at any time. Applies to LDAP and local users.
The following error is displayed: “CSRF token verification failed!”
After a few seconds, a login is possible. Sometimes it takes longer.
Errors occur externally via https and internally via http.
Sophos XG WAF is used as SSL terminator.
Log File
I, [2020-01-08T16:01:42.040516 #2280-47166696252020] INFO – : Processing by SessionsController#destroy as JSON
I, [2020-01-08T16:01:42.051744 #2280-47166696252020] INFO – : Completed 200 OK in 11ms (Views: 0.2ms | ActiveRecord: 3.0ms)
I, [2020-01-08T16:01:42.117649 #2280-47166696251740] INFO – : Started POST “/api/v1/message_send” for 10.135.000.000 at 2020-01-08 16:01:42 +0000
I, [2020-01-08T16:01:42.124207 #2280-47166696251740] INFO – : Processing by LongPollingController#message_send as JSON
I, [2020-01-08T16:01:42.124273 #2280-47166696251740] INFO – : Parameters: {“client_id”=>“8659359095”, “data”=>{“event”=>“login”, “session_id”=>“8d27b08539df0dfad3ea16a393247a68”, “fingerprint”=>“1331506911”}}
I, [2020-01-08T16:01:42.125001 #2280-47166696251740] INFO – : CSRF token verification failed
I, [2020-01-08T16:01:42.125398 #2280-47166696251740] INFO – : Completed 401 Unauthorized in 1ms (Views: 0.1ms | ActiveRecord: 0.0ms)
I, [2020-01-08T16:01:42.176979 #2280-47166627417480] INFO – : Started POST “/api/v1/message_send” for 10.135.000.000 at 2020-01-08 16:01:42 +0000
I, [2020-01-08T16:01:42.184172 #2280-47166627417480] INFO – : Processing by LongPollingController#message_send as JSON
I, [2020-01-08T16:01:42.184232 #2280-47166627417480] INFO – : Parameters: {“data”=>{“event”=>“login”}}
I, [2020-01-08T16:01:42.184515 #2280-47166627417480] INFO – : client(9219720160) new client connection
I, [2020-01-08T16:01:42.186752 #2280-47166627417480] INFO – : Completed 200 OK in 2ms (Views: 0.7ms | ActiveRecord: 0.3ms)
I, [2020-01-08T16:01:42.942911 #2280-47166631019200] INFO – : Completed 200 OK in 1117ms (Views: 99.6ms | ActiveRecord: 1.3ms)
I, [2020-01-08T16:01:43.123291 #2280-47166619790540] INFO – : Started POST “/api/v1/message_send” for 10.135.000.000 at 2020-01-08 16:01:43 +0000
I, [2020-01-08T16:01:43.123596 #2280-47166696252020] INFO – : Started POST “/api/v1/message_receive” for 10.135.000.000 at 2020-01-08 16:01:43 +0000
I, [2020-01-08T16:01:43.129810 #2280-47166619790540] INFO – : Processing by LongPollingController#message_send as JSON
I, [2020-01-08T16:01:43.131451 #2280-47166619790540] INFO – : Parameters: {“client_id”=>“9219720160”, “data”=>{“event”=>“spool”, “timestamp”=>1578499067}}
I, [2020-01-08T16:01:43.131366 #2280-47166696252020] INFO – : Processing by LongPollingController#message_receive as JSON
I, [2020-01-08T16:01:43.131848 #2280-47166696252020] INFO – : Parameters: {“client_id”=>“9219720160”}
I, [2020-01-08T16:01:43.133623 #2280-47166619790540] INFO – : Completed 200 OK in 2ms (Views: 0.1ms | ActiveRecord: 0.3ms)
I, [2020-01-08T16:01:43.137320 #2280-47166696251740] INFO – : Started POST “/api/v1/signin” for 10.135.000.000 at 2020-01-08 16:01:43 +0000
I, [2020-01-08T16:01:43.141470 #2280-47166696251740] INFO – : Processing by SessionsController#create as JSON
I, [2020-01-08T16:01:43.141532 #2280-47166696251740] INFO – : Parameters: {“username”=>"Frank.Mustermann@company.de", “password”=>"[FILTERED]", “fingerprint”=>“1331506911”}
I, [2020-01-08T16:01:43.141929 #2280-47166696251740] INFO – : CSRF token verification failed
I, [2020-01-08T16:01:43.142457 #2280-47166696251740] INFO – : Completed 401 Unauthorized in 1ms (Views: 0.1ms | ActiveRecord: 0.0ms)
I, [2020-01-08T16:01:43.345532 #2280-47166627417480] INFO – : Started POST “/api/v1/message_send” for 10.135.000.000 at 2020-01-08 16:01:43 +0000
I, [2020-01-08T16:01:43.349566 #2280-47166627417480] INFO – : Processing by LongPollingController#message_send as JSON
I, [2020-01-08T16:01:43.349618 #2280-47166627417480] INFO – : Parameters: {“client_id”=>“9219720160”, “data”=>{“event”=>“login”, “session_id”=>“8d27b08539df0dfad3ea16a393247a68”, “fingerprint”=>“1331506911”}}
I, [2020-01-08T16:01:43.351436 #2280-47166627417480] INFO – : Completed 200 OK in 2ms (Views: 0.1ms | ActiveRecord: 0.2ms)