About Cross-Site Request Forgery (CSRF) security
To help protect against Cross-Site Request Forgery (CSRF) attempts, Infor
Mongoose implements a key setting in the web.config file for the web
client.
This key setting, mgEnableCSRFProtection, is included and enabled in the web.config for web clients by default. When the system detects a CSRF attempt, an error message is logged that indicates the type of security breach being attempted (CSRF) and the URL that was attempted. Then the web client session is immediately closed.
To disable this security measure, you must edit the web.config file for the web client and set the mgEnableCSRFProtection key value to "False".