modest 2.9.2 – response body: transformed: dechunked

I would appreciate if someone can point me to the right way solving this

Have a POST for a refresh token and modsec closes the connection(?) — the browser goes into an endless loop back and forth ; using apache 2.4.6 and modsec 2.9.2 in centos 7.

  1. Can I disable modsec engine completely for this request?

  2. Doesn’t say “rule matched” in the H header and K section in audit lists so many rules to post here (but can post if someone needs it)


--522ec87e-F-- HTTP/1.1 400 Bad Request X-Frame-Options: SAMEORIGIN Cache-Control: no-store Pragma: no-cache X-Frame-Options: SAMEORIGIN Access-Control-Expose-Headers: Access-Control-Allow-Methods Access-Control-Allow-Origin: https://mysite.com Access-Control-Allow-Credentials: true Content-Type: application/json Content-Length: 69 X-XSS-Protection: 1; mode=block Connection: close     --522ec87e-H-- Apache-Handler: proxy-server Stopwatch: 1585504125443097 26443 (- - -) Stopwatch2: 1585504125443097 26443; combined=7503, p1=367, p2=6899, p3=71, p4=124, p5=41, sr=64, sw=1, l=0, gc=0 Response-Body-Transformed: Dechunked Producer: ModSecurity for Apache/2.9.2 (http://www.modsecurity.org/); OWASP_CRS/3.0.0. Server: Apache Engine-Mode: "ENABLED"  --522ec87e-Z--