Jira 9 has a new requirement for XSFR Security Token, please read this documentation Preparing for Jira 9.0 | Atlassian Support | Atlassian Documentation section “Improved XSRF protection” and “Verification of Jira web action request methods”
Also read this topic Jira 9.0 has a release candidate!
Cheers
Adam