Hello,
For the moment, I did what is wrong and NOT suggested for production environments.
I edited file \core\backend\Security\CSRFValidationListener.php and abandoned line 96 that throws the error:
$value = $event->getRequest()->headers->get($this->headerName);
if (!$value || !$this->csrfTokenManager->isTokenValid($value)) {
return;
}
But, I still consider the ticket open and I am investigating for a solution.
Regards,
George