I'm testing eDirAPI (v.1.3) for Web site authentication against Edirectory (v.9.2.5). Installed and configured container. After few config iterations I can create a session and get CSRF token. However, as a next step to read / query any attributes and sending X-CSRF-Token header gives "CSRF Token mismatch" errors (same error is in edirapi.log file).
Is there any specific format that must be used to pass the X-CSRF-Token header and perhaps more verbose logs to troubleshoot?