mirror of
https://github.com/zulip/zulip.git
synced 2025-11-04 14:03:30 +00:00
31 lines
783 B
JavaScript
31 lines
783 B
JavaScript
/* eslint-env commonjs */
|
|
|
|
"use strict";
|
|
|
|
const $ = require("jquery");
|
|
|
|
let csrf_token;
|
|
$(() => {
|
|
// This requires that we used Jinja2's {% csrf_input %} somewhere on the page.
|
|
const csrf_input = $('input[name="csrfmiddlewaretoken"]');
|
|
if (csrf_input.length > 0) {
|
|
csrf_token = csrf_input.attr("value");
|
|
} else {
|
|
csrf_token = undefined;
|
|
}
|
|
window.csrf_token = csrf_token;
|
|
|
|
if (csrf_token === undefined) {
|
|
return;
|
|
}
|
|
|
|
$.ajaxSetup({
|
|
beforeSend(xhr, settings) {
|
|
if (!(/^http:.*/.test(settings.url) || /^https:.*/.test(settings.url))) {
|
|
// Only send the token to relative URLs i.e. locally.
|
|
xhr.setRequestHeader("X-CSRFToken", csrf_token);
|
|
}
|
|
},
|
|
});
|
|
});
|