gitadmin/freeCodeCamp
1
0
Fork 0
mirror of https://github.com/freeCodeCamp/freeCodeCamp.git synced 2026-05-28 18:26:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat(api): add logging for CSRF addition (#59062)

Browse Source
This commit is contained in:
Sem Bauke
2025-03-03 14:42:38 +01:00
committed by GitHub
parent d56d3d15bb
commit 17838276b8
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
api/src/plugins/csrf.ts
+2
View File
@@ -27,9 +27,11 @@ const csrf: FastifyPluginCallback = (fastify, _options, done) => {
// All routes except signout should add a CSRF token to the response
fastify.addHook('onRequest', (_req, reply, done) => {
const logger = fastify.log.child({ _req });
const isSignout = _req.url === '/signout' || _req.url === '/signout/';
if (!isSignout) {
logger.debug('Adding CSRF token to response');
const token = reply.generateCsrf();
void reply.setCookie(CSRF_COOKIE, token, {
sameSite: 'strict',