April 3, 2020
Estimated Post Reading Time ~

When trying to fake a post request, you get the following error in the logs

The ProblemPOST /my/post/url HTTP/1.1] org.apache.sling.security.impl.ReferrerFilter Rejected empty referrer header for POST request to /my/post/url

The solution problem here is that you are not correctly spoofing the Referer address. To avoid this problem when testing, you can disable Referer filter checking by going to localhost:/4502/system/console/components, go to Apache Sling Referrer Filter and check the "Allow Empty" checkbox.

This will disable the referrer security check-in CQ5 for your developer instance.

NOTE: 
Do Not Do This For Publicly Accessible Cq5/Aem Instances As It Poses A Security Risk


By aem4beginner

No comments:

Post a Comment

If you have any doubts or questions, please let us know.