Skip to content

Use form field for csrf#3

Merged
nickmoreton merged 3 commits into
mainfrom
use-form-field-for-csrf
Aug 14, 2025
Merged

Use form field for csrf#3
nickmoreton merged 3 commits into
mainfrom
use-form-field-for-csrf

Conversation

@nickmoreton

@nickmoreton nickmoreton commented Aug 14, 2025

Copy link
Copy Markdown
Contributor

These are some changes I found to be required when testing the package in a live scenario.

CSRF Handling Improvements:

  • Changed CSRF token extraction in orderable.js to use the hidden form field instead of parsing from cookies, which works more reliability.
  • Updated the template order.html to include a form with the CSRF token, ensuring the token is available in the DOM for JavaScript to access.

@nickmoreton nickmoreton marked this pull request as ready for review August 14, 2025 15:42
@nickmoreton nickmoreton merged commit a3d1d80 into main Aug 14, 2025
5 checks passed
@nickmoreton nickmoreton deleted the use-form-field-for-csrf branch August 14, 2025 15:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant