fix(upload): appStream uses CSRF + Session authentication

2025-12-11 03:34:35 +00:00 · 2022-05-02 18:01:28 +05:00
parent a07f47a1ba
commit 1f89279264
10 changed files with 78 additions and 74 deletions
--- a/api/src/routes/web/web.ts
+++ b/api/src/routes/web/web.ts
@@ -7,7 +7,10 @@ const controller = new WebController()

 webRouter.get('/', async (req, res) => {
  try {
-    const response = await controller.home(req)
+    const response = await controller.home()
+
+    res.cookie('XSRF-TOKEN', req.csrfToken())
+
    return res.send(response)
  } catch (_) {
    return res.send('Web Build is not present')