GridServer(GS) Admin UI popup windows behavior on Internet Explorer(IE) 11
Article ID: KB0079383
Updated On:
| Products | Versions |
|---|---|
| TIBCO DataSynapse GridServer | 7.0.0, 6.3.1, 5.2.1, 5.2.0 HF2 onwards |
Description
We have enforced a security measure for Cross-Site Forgery (CSRF) by introducing a CSRF Filter dropdown option under Admin > Manager Configuration > Security > Miscellaneous on Admin UI. The default value for CSRF Filter is True. Because of this, GS manager server expects that all subsequent requests (after login) will send back the HTTP Referer header. Therefore, if there is no Referer header to be sent back on the server side, it will redirect to the login page on IE11.
When a Grid user clicks on popup button (for example, edit service type, manager diagnostics, etc), the popup window redirects to GS Admin UI login page on IE11. If a Grid user is already logged in, below message will be displayed on the UI:
"Welcome, <user-logged-in-id>. You are logged into the Manager <manage-host>, running GridServer Version x.x."
When a Grid user clicks on popup button (for example, edit service type, manager diagnostics, etc), the popup window redirects to GS Admin UI login page on IE11. If a Grid user is already logged in, below message will be displayed on the UI:
"Welcome, <user-logged-in-id>. You are logged into the Manager <manage-host>, running GridServer Version x.x."
Issue/Introduction
GS CSRF Filter and IE11 behavior
Resolution
There are currently two workarounds for this:
- Set CSRF Filter to False under Admin > Manager Configuration > Security > Miscellaneous on Admin UI. Once this is done, upon clicking any popup buttons on UI, it will redirect to the designated page instead of the login page.
- Use another web browser. We recommend Google Chrome.
Feedback
Yes
No
Powered by
