sr2/link-stack
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Restore missing CSRF header

Browse source
This commit is contained in:
Darren Clarke 2024-10-09 12:21:06 +02:00
parent 66741f855d
commit e27c381405
3 changed files with 12 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

8
apps/link/app/_lib/authentication.ts
View file

@ -118,14 +118,20 @@ export const authOptions: NextAuthOptions = {
session: async ({ session, token }) => {
// @ts-ignore
session.user.roles = token.roles ?? [];
// @ts-ignore
session.user.zammadCsrfToken = token.zammadCsrfToken;
return session;
},
jwt: async ({ token, user }) => {
jwt: async ({ token, user, trigger, session }) => {
if (user) {
token.roles = (await getUserRoles(user.email)) ?? [];
}
if (session && trigger === "update") {
token.zammadCsrfToken = session.zammadCsrfToken;
}
return token;
},
},