hyperzlib
/
nodebb
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

chore: add comment for clarification

Browse Source
v1.18.x
Julian Lam 4 years ago
parent 13d5a1440b
commit 6037f5ee2c
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File

1
src/middleware/user.js
Unescape Escape View File

@ -34,6 +34,7 @@ module.exports = function (middleware) {
const loginAsync = util.promisify(req.login).bind(req); const loginAsync = util.promisify(req.login).bind(req);
if (req.loggedIn) { if (req.loggedIn) {
// If authenticated via cookie (express-session), protect routes with CSRF checking
if (res.locals.isAPI) { if (res.locals.isAPI) {
await middleware.applyCSRFasync(req, res); await middleware.applyCSRFasync(req, res);
} }

Write Preview
Loading…
Cancel
Save