Discourse/discourse
Discourse/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-09-07 12:02:53 +08:00
Code Packages Activity Actions 5

recover from bad CSRF tokens without requiring a hard refresh of the browser

Browse source
This commit is contained in:
Sam 2013-08-27 15:56:12 +10:00
parent bec463564f
commit c4a0152dc6
5 changed files with 16 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

8
app/assets/javascripts/discourse.js
View file

@ -132,13 +132,13 @@ Discourse = Ember.Application.createWithMixins(Discourse.Ajax, {
});
// Add a CSRF token to all AJAX requests
var csrfToken = $('meta[name=csrf-token]').attr('content');
Discourse.csrfToken = $('meta[name=csrf-token]').attr('content');
console.log(Discourse.csrfToken);
$.ajaxPrefilter(function(options, originalOptions, xhr) {
if (!options.crossDomain) {
// This may be delay set
csrfToken = csrfToken || $('meta[name=csrf-token]').attr('content');
xhr.setRequestHeader('X-CSRF-Token', csrfToken);
xhr.setRequestHeader('X-CSRF-Token', Discourse.csrfToken);
}
});