Handle A ajax Header

Please Help Me with this How to Handle Ajax Header

I tried <Cookie[*]> Then i receive Ajax CSRF Token Then i parse with

Parse
<COOKIES[XSRF-TOKEN]>
Var Name : CSRF

Header

origin: https://xxxxx.com
sec-ch-ua: “Google Chrome”;v=“95”, “Chromium”;v=“95”, “;Not A Brand”;v=“99”
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: “Windows”
sec-fetch-dest: empty
sec-fetch-mode: cors
sec-fetch-site: same-origin
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36
X-Requested-With: XMLHttpRequest
x-xsrf-token:

Response

Response Source:
{
“message”: “CSRF token mismatch.”
}

If you are trying that with Ob2 it won’t work and the variable system has been changed so use data.COOKIES[“name”] Instead so your headers should be

origin: https://xxxxx.com
sec-ch-ua: “Google Chrome”;v=“95”, “Chromium”;v=“95”, “;Not A Brand”;v=“99”
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: “Windows”
sec-fetch-dest: empty
sec-fetch-mode: cors
sec-fetch-site: same-origin
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36
X-Requested-With: XMLHttpRequest
x-xsrf-token: <data.COOKIES[“XSRF-TOKEN”]>

Don’t forget to tick the image

it should look like this
image

Thank you sir i still receive error where to place kindly check

Here is the Details

 i am using OB 1.4.5 [ANOM]


https://xxxx.com/users/login

--------------------------------------------

Response Header
---------------------------------------------
cache-control: no-cache, private, max-age=0
cf-cache-status: DYNAMIC
cf-ray: 6ad586696bf72d04-DEL
content-length: 87
content-type: application/json
date: Sat, 13 Nov 2021 05:15:56 GMT
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
expires: Sat, 13 Nov 2021 05:15:56 GMT
server: cloudflare
set-cookie: XSRF-TOKEN=eyJpdiI6IlJhSEFPckM5ZlFMRGFCWDZ1VmtlL2c9PSIsInZhbHVlIjoiczNNb2FLSmd5NSs2V2NHeHVPa1RnbkdPVFRSYlVpRjVsV1pnZTk2Nk9WMTA1SC80T2VvVzN4ZVJoMVpOTGRteW5uNjNPV0NvQkRiMGxwMWpDWm1qTjRhY0MzV2Z3Q3ZGTnlCaTJaRCs2OEQxaHFnZEtCZC9zK3o3OFBJaERqeGwiLCJtYWMiOiIzNjViMWQwMWJlMWExYWFhNDFkMzRjZGM1NDM4ZmY3MDc3N2YwMzUwM2VhZjc2ZGU5OTY5OWQ2YTc1MzJjYTdiIiwidGFnIjoiIn0%3D; expires=Sat, 13-Nov-2021 07:15:56 GMT; Max-Age=7200; path=/; domain=sxxx.com; secure; samesite=lax
set-cookie: xxxxx_session=eyJpdiI6ImN6cEJza0xlb2J4UiswTDB2WDgrenc9PSIsInZhbHVlIjoiQkV1ckhBZS9YZ3JHU29wcWZvMWpMZ3R6ZzA4VzkvZGFDVU8xMHdmSGdVSDljL2pKUXdiVGNBcG9rUjhtcFdrRG9ZczVPTW1GcURxNkpkUzQ4SDNiRnNNWEFPSWJBbUw4dVJpQ3BtZEpvVkJjV0ZnS1prRTJnbm9ZUytlTnBLZ2MiLCJtYWMiOiI4ZTliNzExNjFiOTQ2ZDZkNjg4YjYxNjUzNDIzMDJiYmQwOGZiODZkNWVhMDM4YjBmZjBlYjc4NDczNjg4ODAxIiwidGFnIjoiIn0%3D; expires=Sat, 13-Nov-2021 07:15:56 GMT; Max-Age=7200; path=/; domain=xxxxe.com; secure; httponly; samesite=lax
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ratelimit-limit: 480
x-ratelimit-remaining: 479



Request Header


sec-ch-ua: "Google Chrome";v="95", "Chromium";v="95", ";Not A Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
sec-fetch-dest: empty
sec-fetch-mode: cors
sec-fetch-site: same-origin
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36
x-requested-with: XMLHttpRequest
x-xsrf-token: eyJpdiI6ImpuTWF1QWhmbUhvME1ZS0ZsV09iS3c9PSIsInZhbHVlIjoiaFRQTHBGd2F3S0d3NjBFRFpmOWV3eHcvOVpWbWZvaC9jMDZROHB2ZDNBZDBsVjlycVUyRXB2SUlPNlZXaTJnamRvdjZjWVd1aHhmZFZ3c2lPWmZFL2p1S05BeUpUdmI0QnZMZEVRQ0xkT1NjcW5sNDlmcnpTZGlxU0ZRbTIxMTQiLCJtYWMiOiIxMjg4ZDQ1M2Q5NDAxMmU5OGY3N2I0ZDQwODdlZjdhZjk0MDgxZmQyMGQ5NDdjMGEyMDFkYTcyMmQ4NGYyZTRlIiwidGFnIjoiIn0=