dap1--- via Mailman-users writes:
I added the hostname of the local host to ALLOWED_HOSTS and removed the '*'. I then tried using the hostname in the URL but go the same result. Nothing of interest in the error.log.
It's NOT DNS??!!!?!?! Sorry, couldn't resist the "it's DNS, it's ALWAYS DNS" joke..
Seriously, this looks more and more like a CSRF issue. Check the page with "curl https://your.host/accounts/login/ | grep csrf". It should output a line like
<input type="hidden" name="csrfmiddlewaretoken" value="n4u4Ju2rVsemuGWaqbVHdfd1V8u6WWnEDe67jjDJFNWdwqGIxGnlD9fPwLGsyP0M">
If it's not there, that's the problem, but I don't know offhand which template is responsible for putting it there. Unfortunately it doesn't seem to be stored in the SQL DB, so if it's there, I don't know how to check if it's correct. Maybe Mark has some ideas.
Steve
-- GNU Mailman consultant (installation, migration, customization) Sirius Open Source https://www.siriusopensource.com/ Software systems consulting in Europe, North America, and Japan