hyperzlib
/
nodebb
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix: tests, only generate csrf_token on 404 gets

Browse Source
v1.18.x
Barış Soner Uşaklı 4 years ago
parent 2c52fbd1b9
commit b6493f896f
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File

6
src/controllers/404.js
Unescape Escape View File

@ -43,7 +43,11 @@ exports.send404 = async function (req, res) {
if (res.locals.isAPI) {
return res.json({ path: validator.escape(path.replace(/^\/api/, '')), title: '[[global:404.title]]' });
}
await middleware.applyCSRFasync(req, res);
if (req.method === 'GET') {
await middleware.applyCSRFasync(req, res);
}
await middleware.buildHeaderAsync(req, res);
res.render('404', { path: validator.escape(path), title: '[[global:404.title]]' });
};

Write Preview
Loading…
Cancel
Save