/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
Applications experience short-lived spikes of 4xx responses, primarily 401 (Unauthorized) and 403 (Forbidden), associated with expired JWTs and CSRF-related Spring Security exceptions; some logs in the same timeframe also record 204 responses.
Read more...
Environment
SAP Business Technology Platform
Product
SAP Business Technology Platform all versions
Keywords
XSUAA, 401 unauthorized, 403 forbidden, JWT expired, access token, token refresh, token cache, CSRF, access is denied, rate limiting, oauth2, BTP authentication , KBA , BC-CP-CF-SEC-IAM , UAA, Authentication, Authorization, Trust Mgmnt , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)