-
Notifications
You must be signed in to change notification settings - Fork 967
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[v1.7] Your CSRF verification failed
, reverse proxy not working?
#712
Comments
I think we should leave this up for several days after the 1.7.0 release. |
Thankfully was an easy fix, my legs started to shake when I saw the CSRF error. I had a similar Django problem Django with TandoorRecipes TandoorRecipes/recipes#959 which took a lot of investigation to fix, but thankfully Paperless-ngx happily accepted the new variable. Please add it to the .env / docs! I searched and is not yet there! |
The variable is in the beta-branch of the docs, although we should add this note to the nginx config docs as well. I'll do that now. It was also added to the install script and example |
CSRF verification failed
, reverse proxy not working?CSRF verification failed
, reverse proxy not working?
CSRF verification failed
, reverse proxy not working?CSRF verification failed
, reverse proxy not working?
Do any of you have a working configuration for Traefik as a reverse proxy? The documentation does only contain a configuration for Nginx. |
See jonaswinkler/paperless-ng#1148 (comment) , other than adding |
@shamoon Thanks, but this is not the problem. I had a working installation with traefik for v1.6, but the CSRF-verification breaks it in v1.7 . |
Nevermind. I made a stupid error. The environment variable does work properly with my Traefik setup. @cl445 not sure what you're running into here. |
That link does contain my working traefik config |
CSRF verification failed
, reverse proxy not working?CSRF verification failed
, reverse proxy not working?
Thanks for the good documentation! As this has been noted as a breaking change, but the major version number has not been bumped, I’m curious as to what we regard as the public API that the versioning is based on? If we see „the software can be used to archive and retrieve documents“ as the public API (which I think is what we should do and what this being noted as breaking changes suggests), this version bump should have been to Is there a specific reason for deciding against that? I can also make this a separate issue if we want to discuss this at more length. |
Paperless' backend API, which serveral apps and scripts depend upon, is unaffected by this change. Personally that's what I have in mind when versioning, although we work as a team and our group semver strategy has not been explicitly defined. We can discuss in a new issue if that should be changed. |
I use synology reverse proxy and I get the same error : I already added PAPERLESS_URL env variable and I didn't add the trailing slash. |
|
In |
You are correct, thats why the documentation notes that |
Setting the PAPERLESS_URL works for me, but instead of simply restart the docker-compose as it is told in this ticket (docker compose up -d) I had to start the containers again with recreation (docker compose up -d --force-recreate). This does the trick at my installation. |
@Romanicus Thank you! That did also the trick for me! |
Thank you, I've edited that into the OP |
I change the reverse proxy configuration and it works ! |
The PAPERLESS_URL was wrong. Now everything is working. |
I have the CSFR issue and don‘t know how to fix it. What did I wrong? I‘m also not able to change the enviroments with protainer. is this a bug? sorry, i‘m new to all of this. if you need any further information to help my, please give me i sign. thnx in advance |
Try changing the PAPERLESS_URL to https://cloud.xxx-xxx.de:8770 |
I do have the same issue, but setting I've installed paperless-ngx manually and setup a nginx reverse proxy according to the docs. I come to the login page but after that I get
Any help would be highly appreciated. |
@stfnx I think this is more related to #817 I compared the response headers when removing a tag with the login page. The login page doesn't set the @shamoon I feel like this better fits in #817, but it's closed. What is your suggestion? New issue? Reopen #817? |
I removed |
This has cost me 2 hours of searching why my settings did not work. |
Was running paperless on proxmox within a LXC container. Didn't had to change anything on my nginx reverse proxy |
Would you mind telling what did you change in the reverse proxy configuration exactly? |
I have this problem also, I can't get it to work. (Using HAProxy on pfSense as reverse proxy) Log:
with: |
@flemmingss I ran into this issue yesterday (using HAProxy on OPNsense) when I went to go run Paperless-NGX in Portainer. This led me to this Github issue which I troubleshot for a few hours. Today, I completely tore down my setup and stood it back up by doing the following:
Doing this, I was able to successfully log into https://paperless.mydomain.me without receiving the CSRF verification error! |
This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new discussion or issue for related concerns. |
1.7.0 Breaking Change:
PAPERLESS_URL
If you're behind a reverse proxy, the configuration variable
PAPERLESS_URL
needs to be set. See the Documentation about this variable to determine the correct value, typically it will just be your domain (i.e.https://paperless.xxxx.com
).Please remember to not add the trailing slash (
https://paperless.xxxx.com/
).#674 explains why we needed to make this change.
Docker
Edit your
docker-compose.env
and add this variable.Then force recreate your container (
docker compose up -d --force-recreate
).Unraid
Add this variable similarly to the screenshot below.
PAPERLESS_URL
https://paperless.xxxx.com
Bare Metal
Add/Edit this variable in your
paperless.conf
:Then restart paperless-ngx.
The text was updated successfully, but these errors were encountered: