9 Apr
2026
9 Apr
'26
11:37
Hi,
We got NAV deployed behind haproxy and since CSRF was enabled forms don't work, including the login form.
The haproxy frontend is TLS while the connection to the NAV backend is http (it's on the same host for reasons).
I've tried various suggestions for django csrf behind a reverse-proxy, including adding "http-request set-header X-Forwarded-Proto https" to haproxy frontend without success.
There are various django config options that are suggested, but those are not exposed through the nav.conf file.
.einar