Another tidbit from HAR that seems it might be relevant. http status response of 403. (I redacted cookie hashed values.) "response": { "status": 403, "statusText": "Forbidden", "httpVersion": "HTTP/1.1", "headers": [ { "name": "Cache-Control", "value": "no-store, no-cache, must-revalidate, max-age=0" }, { "name": "Date", "value": "Tue, 23 Jun 2020 14:20:59 GMT" }, { "name": "Expires", "value": "Thu, 26 Oct 1978 00:00:00 GMT" }, { "name": "Server", "value": "nginx" }, { "name": "Set-Cookie", "value": "splunkd_8443=[...redacted...]; Path=/; Secure; HttpOnly; Max-Age=3600; Expires=Tue, 23 Jun 2020 15:20:59 GMT" }, { "name": "Set-Cookie", "value": "splunkweb_csrf_token_8443=[...redacted...]; Path=/; Secure; Max-Age=157680000; Expires=Sun, 22 Jun 2025 14:20:59 GMT" }, { "name": "Strict-Transport-Security", "value": "max-age=31536000; includeSubDomains" }, { "name": "Vary", "value": "*" }, { "name": "X-Frame-Options", "value": "SAMEORIGIN" }, { "name": "Content-Length", "value": "85" }, { "name": "Connection", "value": "keep-alive" } ],
... View more