0
128

Written by

PRAVIN T
Follow
Question PRAVIN T · Dec 4, 2025

"Invalid Action" Error When Accessing CSP

#InterSystems Data Studio #CSP

I’m facing an issue with a CSP-based web application.
The default.csp page loads correctly on both servers. However, when I try to open or submit the login.csp page on one server, it shows the error:

"INVALID ACTION"

The exact same codebase is deployed on another IRIS server, and it works there without any issues.

Summary of the issue:

  • default.csp → Loads successfully
  • login.csp → Fails with “INVALID ACTION” only on one server
  • No code changes between the two servers

Has anyone encountered this kind of scenario?
What configuration differences should I check between the two servers that might cause this behavior?

Product version: IRIS 2021.1
Discussion (11)4
Log in or sign up to continue

Comments

Enrico Parisi · Dec 4, 2025

Are you using the IRIS login page or a custom login page defined in the Web Application?

0
PRAVIN T  Dec 4, 2025 to Enrico Parisi

I am using custom login page
and my server use the csp to cls converted pages. when I import the login.csp page it will work but csp.login.cls file not work

0
Robert Cemper  Dec 4, 2025 to PRAVIN T

A guess from the hip:

  • import of *.CSP is followed by compiling it to *.CLS,  which is compiled to *.INT
  • import of *.CLS doesn't necessarily trigger a compile
     
0
PRAVIN T  Dec 4, 2025 to Robert Cemper

Thanks for your support Robert.

But my issue is, I have an backup file when i restored it
server 1:
default.csp -> login.csp page are open
server 2:
default.csp -> login.csp (shows invalid action and its not point out the file)

0
John Murray · Dec 4, 2025

Since you are using a custom login class maybe the warning at https://docs.intersystems.com/irislatest/csp/docbook/DocBook.UI.Page.cl… is relevant:

Usually, the login page is loaded before the user has logged in to InterSystems IRIS, so the requesting process runs under the CSPSystem user (or whatever user connects the CSP Gateway to InterSystems IRIS). As a result, the CSPSystem user must have sufficient privileges to load and run the code in the login page, which generally requires READ permissions on the resource protecting the database in which the login page is located.

0
PRAVIN T  Dec 4, 2025 to John Murray

I try this but its not working.
I have an two server and my url is : http://localhost/test/default.csp
but I dont have the actual default.csp page in my both server insted i have the csp to cls converted code
ex: default.csp -> csp.default.cls
server 1 is working but server 2 shows page not found

0
David Hockenbroch  Dec 4, 2025 to PRAVIN T

Page not found, or Invalid Action? If it's page not found, how is the web application configured?

0
PRAVIN T  Dec 5, 2025 to David Hockenbroch

Not Found

The requested URL /flynth/default.csp was not found on this server.
this is the issue im facing but the server contains csp.default.cls file
and its working on server 1 not working on server 2

0
PRAVIN T  Dec 5, 2025 to Enrico Parisi

I checked the both server management portal configuration and nothing is different

0
PRAVIN T · Dec 5, 2025

Hi guys,
Thanks for you support. I solved the isses and the issues is management portal misconfigurations.
When I disable "PRVIENT LOGIN CSRF ATTACK" then it will work as expected.

0