Get XHR requests fail on welcome login screen

Hi,

I’m running the latest Camunda docker image (camunda-bpm-platform:latest) and have deployed it to an acceptance environment. I’m able to access the welcome screen with the login form.
Most resources load, but on the XHR Get requests I get errors (400 bad request).

Accessing the same endpoints through the browser does work. Replaying the request using the browser console works, but only when I change headers.
So for instance, this fails:
fetch(“FOO”, {
“headers”: {
“accept”: “application/json, text/plain, /”,
“accept-language”: “en-US,en;q=0.9,es-CO;q=0.8,es;q=0.7,es-419;q=0.6,nl;q=0.5”,
“sec-fetch-dest”: “empty”,
“sec-fetch-mode”: “cors”,
“sec-fetch-site”: “same-origin”,
“x-authorized-engine”: “default”,
“x-xsrf-token”: “FOO”
},
“referrer”: “FOO”,
“referrerPolicy”: “strict-origin”,
“body”: null,
“method”: “GET”,
“mode”: “cors”,
“credentials”: “include”
});

By removing the x-authorized-engine field, I get a successful request:
fetch(“FOO”, {
“headers”: {
“accept”: “application/json, text/plain, /”,
“accept-language”: “en-US,en;q=0.9,es-CO;q=0.8,es;q=0.7,es-419;q=0.6,nl;q=0.5”,
“sec-fetch-dest”: “empty”,
“sec-fetch-mode”: “cors”,
“sec-fetch-site”: “same-origin”,
“x-xsrf-token”: “FOO”
},
“referrer”: “FOO”,
“referrerPolicy”: “strict-origin”,
“body”: null,
“method”: “GET”,
“mode”: “cors”,
“credentials”: “include”
});

It’s unclear to me what the x-authorized-engine actually does. Any idea on how I can fix this or somehow configure the Docker instance for this to work?

Any idea what the problem could be?