Encountered an error: CSRF DETECTED

I’m trying to create a REST API Resource by connecting ReTool to Xero (accounting SaaS) using OAuth 2.0. Having configured the Authorization URL and suchlike I go to “Test OAuth integration”. I’m successfully taken to Xero, which confirms the scopes. I click “Allow access” and, once redirected to ReTool, shown the error:

Encountered an error: CSRF DETECTED.

How do I overcome this?

I worked this out with @NimbleBen through support. The problem was that the Xero OAuth flow needed an extra step to attach a tenant-id to the request headers.

1 Like