search

publicdevop2019 / mt-auth

Multi-tenant, RBAC for application, api and user
https://www.letsauth.cloud
Apache License 2.0
50 stars 14 forks source link

when csrf is uncheck, it's still required #88

Open publicdevop2019 opened 7 hours ago

publicdevop2019 commented 7 hours ago

this is due to demo application is configured using localhost:8111 (same as proxy), then request get routed to internal

publicdevop2019 commented 5 hours ago
  1. change init.sql path to not using localhost:8111
  2. check localhost or local IPs in set up
  3. make public endpoint not using CSRF by default