6:[["$","$Le",null,{}],["$","div",null,{"className":"min-h-screen bg-gray-100 p-6","children":[["$","$Lf",null,{}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"QAPage\",\"mainEntity\":{\"@type\":\"Question\",\"name\":\"Postman POST return Forbidden after upgrade\",\"text\":\"

I upgraded Postman 8.0.2 to 9.29.5

\\n

In the older version I have POST calls that works, while in the newer I get 403: Forbidden.

\\n

when I look at the cURL, I see that the newer version is adding also --header 'Cookie: _xsrf=2|08cc..c6cc"'. all other parts of the calls are identical.

\\n

not sure why it's sending the extra parameter, and why it's causing the rejection.

\\n

What am I missing?

\\n\",\"author\":{\"@type\":\"Person\",\"name\":\"Gil\"},\"upvoteCount\":1,\"answerCount\":1,\"acceptedAnswer\":null}}"}}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mb-6 relative","children":[["$","div",null,{"className":"absolute top-4 right-4 flex flex-wrap space-x-2","children":[["$","span","post",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/post/1","children":"post"}]}],["$","span","postman",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/postman/1","children":"postman"}]}]]}],["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/23a52be5b7b13b675c9d89020852e5c1?s=256&d=identicon&r=PG&f=y&so-version=2","alt":"Gil","className":"w-16 h-16 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/6028744/gil","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"Gil"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",15]}]]}]]}],["$","h1",null,{"className":"text-2xl font-bold text-gray-800 mb-4","children":"Postman POST return Forbidden after upgrade"}],["$","p",null,{"className":"text-gray-700 mt-4","dangerouslySetInnerHTML":{"__html":"

I upgraded Postman 8.0.2 to 9.29.5

In the older version I have POST calls that works, while in the newer I get 403: Forbidden.

when I look at the cURL, I see that the newer version is adding also --header 'Cookie: _xsrf=2|08cc..c6cc"'. all other parts of the calls are identical.

not sure why it's sending the extra parameter, and why it's causing the rejection.

What am I missing?

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm mt-4","children":[["$","p",null,{"children":["Upvotes: ",1]}],["$","p",null,{"children":["Views: ",65]}]]}]]}],["$","div",null,{"className":"container mx-auto","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-6","children":["Answers (",1,")"]}],[["$","div","73493335",{"className":"bg-white shadow-md rounded-lg p-6 mb-6","children":[["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/62ab893ccfcf242d6e2fe2cff099702a?s=256&d=identicon&r=PG&f=y&so-version=2","alt":"zack","className":"w-12 h-12 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/4676891/zack","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"zack"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",196]}]]}]]}],["$","p",null,{"className":"text-gray-700 mb-4","dangerouslySetInnerHTML":{"__html":"

It looks like a CSRF prevention causing some issues. I found another post mentioning similar issues.\nPostman get CSRF error when execute my request

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm","children":["$","p",null,{"children":["Upvotes: ",1]}]}]]}]]]}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mt-6","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-4","children":"Related Questions"}],["$","ul",null,{"className":"list-disc list-inside","children":[["$","li","55419756",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/55419756","className":"text-blue-600 hover:underline","children":"I can not request with postman"}]}],["$","li","56142044",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/56142044","className":"text-blue-600 hover:underline","children":"How to fix "Could not get any response" in Postman?"}]}],["$","li","69816056",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/69816056","className":"text-blue-600 hover:underline","children":"403 Forbidden Error on Post request after upgrade of macOS from BigSur to Monterey"}]}],["$","li","66039407",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/66039407","className":"text-blue-600 hover:underline","children":"Why is the Postman Code Generator Link missing after upgrade?"}]}],["$","li","56714077",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/56714077","className":"text-blue-600 hover:underline","children":"Forbidden error in post request when use postman, but not in curl"}]}],["$","li","56559072",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/56559072","className":"text-blue-600 hover:underline","children":"Postman error "Your team updated to Postman v7.0, you must also update to v7.0 by going to > Settings > Update""}]}],["$","li","28290399",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/28290399","className":"text-blue-600 hover:underline","children":"Postman - Getting an error when manually POSTing"}]}],["$","li","48746748",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/48746748","className":"text-blue-600 hover:underline","children":"Postman - 400 Bad Request"}]}],["$","li","44765681",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/44765681","className":"text-blue-600 hover:underline","children":"why postman api body is not responding?"}]}],["$","li","41137086",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/41137086","className":"text-blue-600 hover:underline","children":"I can't make a POST call from POSTMAN but can do manually- Django"}]}]]}]]}]]}],["$","$L11",null,{}],["$","$L12",null,{}],["$","$L13",null,{}],["$","$L14",null,{}],["$","$L15",null,{}]]

Postman POST return Forbidden after upgrade

Answers (1)

Related Questions