fosrl/newt
1
0
Fork 0
mirror of https://github.com/fosrl/newt.git synced 2025-05-13 13:40:39 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add csrf header

Browse source
This commit is contained in:
Owen Schwartz 2024-12-25 22:04:31 -05:00
parent a88701acf1
commit 26a04ceb62
No known key found for this signature in database
GPG key ID: 8271FDFFD9E0CCBD
1 changed files with 28 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

34
websocket/client.go
View file

@ -161,12 +161,23 @@ func (c *Client) getToken() (string, error) {
return "", fmt.Errorf("failed to marshal token check data: %w", err) return "", fmt.Errorf("failed to marshal token check data: %w", err)
} }
// Make request to validate existing token // Create a new request
resp, err := http.Post( req, err := http.NewRequest(
"POST",
baseEndpoint+"/api/v1/auth/newt/get-token", baseEndpoint+"/api/v1/auth/newt/get-token",
"application/json",
bytes.NewBuffer(jsonData), bytes.NewBuffer(jsonData),
) )
if err != nil {
return "", fmt.Errorf("failed to create request: %w", err)
}
// Set headers
req.Header.Set("Content-Type", "application/json")
req.Header.Set("X-CSRF-Token", "x-csrf-protection")
// Make the request
client := &http.Client{}
resp, err := client.Do(req)
if err != nil { if err != nil {
return "", fmt.Errorf("failed to check token validity: %w", err) return "", fmt.Errorf("failed to check token validity: %w", err)
} }
@ -193,12 +204,23 @@ func (c *Client) getToken() (string, error) {
return "", fmt.Errorf("failed to marshal token request data: %w", err) return "", fmt.Errorf("failed to marshal token request data: %w", err)
} }
// Make request to get new token // Create a new request
resp, err := http.Post( req, err := http.NewRequest(
"POST",
baseEndpoint+"/api/v1/auth/newt/get-token", baseEndpoint+"/api/v1/auth/newt/get-token",
"application/json",
bytes.NewBuffer(jsonData), bytes.NewBuffer(jsonData),
) )
if err != nil {
return "", fmt.Errorf("failed to create request: %w", err)
}
// Set headers
req.Header.Set("Content-Type", "application/json")
req.Header.Set("X-CSRF-Token", "x-csrf-protection")
// Make the request
client := &http.Client{}
resp, err := client.Do(req)
if err != nil { if err != nil {
return "", fmt.Errorf("failed to request new token: %w", err) return "", fmt.Errorf("failed to request new token: %w", err)
} }