We are using the applinks/proxy of confluence to interact with the servicedesk from a confluence page.
This functionality is currently unusable since the applinks/proxy URL suddenly (it was working fine with 6.15.6) returns a 403 XSRF Token missing error message.
I have it tracked down to the following commits:
(and confirmed that editing the atlassian-plugin.xml and removing the check again fixes it)
I also tracked down the xwork version:
But it seems that it doesn’t accept my override token for some reason.
So steps to reproduce:
call the applinks/proxy endpoint to interact with a post request with servicedesk from a confluence page.
The post request should succeed, since none of the XSRF markers (documentation) are hit
The post request is blocked.
If anyone has a pointer to fix this, I would appreciate it.
Also I would like Atlassian to actually fix the plugin so that it works as expected, and not change something like that in a MINOR VERSION upgrade!