kenji
1
Linked to # ApiClientOption csrfToken is required
Got the same issue with 4.4.2 (so already up-to-date) Apache2 rules:
Header always edit Set-Cookie "^((?!;\s?[Hh]ttp[Oo]nly).)+$" "$0; HttpOnly"
Header edit Set-Cookie "^((?!;\s?[Hh]ttp[Oo]nly).)+$" "$0; HttpOnly"
clayton
2
Hey @kenji welcome to the forum!
Could you let us know what browser you are using? Also which version of the browser?
kenji
3
Tried with Firefox / Chrome and Chromium, definitively a server side issue