PPM v10.02 Clustered with hardware load balancer. Customer requires https protocol between PPM and the load balancer. When EXTERNAL_WEB_PROTOCOL is HTTPS and LB is configured to use HTTPS to connect PPM, a 403 error is displayed on some auto complete lists. But not all. Only a few particular ones. Nothing remarkable with the validations. Simple list type.
When LB is re-configured to use HTTP and EXTERNAL_WEB_PROTOCOL is changed to HTTP, no problem. End user is always connecting HTTPS at https://ppm_site.com. This is just when the LB to PPM traffic is secured we experience the problem.
We also noticed that when this error occurs the CSRF_X_TOKEN has a value in the POST request header but not in the data payload.
Short term solution is we've changed back to HTTP between PPM and LB. What else can I look at to determine what's causing this and what else can we do to resolve this issue?
Relevant server.conf parameters:
EXTERNAL_WEB_PROTOCOL=HTTPS
EXTERNAL_WEB_PORT=9081
BASE_URL=https://ppm_site.com
ENABLE_SSL_LOGIN=true
HTTPS_KEYSTORE_LOCATION=bla bla bla
HTTPS_KEYPASSWORD=bla bla bla
HTTP_PORT=8081