Browse Source

Do not set CSRF Token when no csrf header (#10383)

pull/4/head
Hinaloe 5 years ago
committed by Eugen Rochko
parent
commit
68f2211f00
1 changed files with 6 additions and 2 deletions
  1. +6
    -2
      app/javascript/mastodon/api.js

+ 6
- 2
app/javascript/mastodon/api.js View File

@ -13,10 +13,14 @@ export const getLinks = response => {
};
let csrfHeader = {};
function setCSRFHeader() {
const csrfToken = document.querySelector('meta[name=csrf-token]').content;
csrfHeader['X-CSRF-Token'] = csrfToken;
const csrfToken = document.querySelector('meta[name=csrf-token]');
if (csrfToken) {
csrfHeader['X-CSRF-Token'] = csrfToken.content;
}
}
ready(setCSRFHeader);
export default getState => axios.create({

Loading…
Cancel
Save