Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
ALERT: QlikView server communication interruptions following Microsoft Windows Domain Controller security updates

QS Header Authentication: Error when using “X-Qlik-User-hdr" as "header authentication header name". It was working in previous Qlik Sense versions

No ratings
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Joseph_Musekura
Support
Support

QS Header Authentication: Error when using “X-Qlik-User-hdr" as "header authentication header name". It was working in previous Qlik Sense versions

Last Update:

Apr 2, 2024 12:18:19 PM

Updated By:

Joseph_Musekura

Created date:

Apr 2, 2024 12:18:19 PM

When using "Header authentication" method, after upgrading to latest Qlik Sense Enterprise versions or latest patch, you may encouter error like "400 bad request Invalid header in the request".

bad_request.png

From the image above, notice that the request header is “X-Qlik-User-hdr = Domain\administrator" (in this example). Meaning that, in Qlik Sense virtual proxy settings, the "header authentication header name” was set to “X-Qlik-User-hdr".

Header_name_QLik_X.png

Resolution

This is working as designed  (WAD).

R&D confirmed that, there was a security fix made back in August-September 2023, which disallow header authentication using header names that include "X-Qlik-User" in "header authentication header name".

Thus, if the "Header Authentication" setting was working before the upgrade and then the error "400 bad request Invalid header in the request" occurs after upgrading to latest version of Qlik Sense Enterprise or after installing a patch, please ensure that in the related virtual proxy, "header authentication header name” is not set to something like "X-Qlik-User-*" (Check for example QS Feb 2024 header name restrictions).


Header_name.png

Information provided on this defect is given as is at the time of documenting. For up to date information, please review the most recent Release Notes, or contact support with the ID QB-25945 or QB-21731 for reference.

Cause

Product Defect ID: QB-25945, QB-21731 and HLP-15641

 

Environment

  • Qlik Sense Entreprise on Windows
Labels (2)
1,184 Views
Was this article helpful? Yes No
Comments
Ana31
Partner - Contributor III
Partner - Contributor III
‎2026-01-07 03:26 AM

Hi,

We currently use 2021 qlik version. I am required to setup QRS API. our qlik runs in 443 port so according to qlik help docu this comes under virtual proxy. I have setup virtual proxy accordingly but still in postman i am getting error like 400 the http request is incorrect. The Link used in POSTMAN: GET https:// qlikserver/qrs/about?xrfkey=(16 character key) and also filled the required headers.
This worked in UAT Qlik but in PROD Qlik i am getting this error. Only difference is in UAT QLIK i was able to find APIUSER user directory and i found my userid and i added it as admin but in prod this APIUSER is not appearing. I have attached the ss below. If anyone has done the similar setup of QRS Kindly help on this.

Note: Basically we need to automate tasks in qlik and for this accessing the qrs via postman to check

Ana31_0-1767774330237.png

 

Contributors
Version history
Last update:
‎2024-04-02 12:18 PM
Updated by:
Support