Hello,
after looking a bit closer into the topic I am not sure what the desired setup really would be:
1) I do not have a jsessionid anyways, so can't make anything sticky....but
2) if i use the form module i get a jsessionid (guess form module stores data, just in case it would be a multistep form, mine isn't however).
Hence I am not sure if or how the CsrfTokenFilter is meant to be used in a multi instance setup?
Or should I write my own which would not use the instanceuuid (also i am not sure where else this uuid has an effect).
Thanks for any hints and regards
Christoph