hyperzlib
/
nodebb
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

test: don't use csrf_token for get,head, options

Browse Source
isekai-main
Barış Soner Uşaklı 3 years ago
parent 4577600e98
commit 5e08f7e604
1 changed files with 11 additions and 3 deletions
Show Stats Download Patch File Download Diff File

14
test/helpers/index.js
Unescape Escape View File

@ -21,11 +21,19 @@ helpers.getCsrfToken = async (jar) => {
};
helpers.request = async function (method, uri, options) {
const csrf_token = await helpers.getCsrfToken(options.jar);
const ignoreMethods = ['GET', 'HEAD', 'OPTIONS'];
const lowercaseMethod = String(method).toLowerCase();
let csrf_token;
if (!ignoreMethods.some(method => method.toLowerCase() === lowercaseMethod)) {
csrf_token = await helpers.getCsrfToken(options.jar);
}
return new Promise((resolve, reject) => {
options.headers = options.headers || {};
options.headers['x-csrf-token'] = csrf_token;
request[method](`${nconf.get('url')}${uri}`, options, (err, res, body) => {
if (csrf_token) {
options.headers['x-csrf-token'] = csrf_token;
}
request[lowercaseMethod](`${nconf.get('url')}${uri}`, options, (err, res, body) => {
if (err) reject(err);
else resolve({ res, body });
});

Write Preview
Loading…
Cancel
Save