Skip to content

Commit 2a8ee1f

Browse files
awesomeYGdhsifssawesomeYG
authored
Fix/2.30.0 (#206)
* fix: remove csrf and use strict mode * refactor: Remove client-side CSRF token caching, retry logic, and authentication data clearing utilities from the HTTP client. --------- Co-authored-by: 姚凯 <kai.yao@chaitin.com> Co-authored-by: awesomeYG <gang.yang@chaitin.com>
1 parent 243cd71 commit 2a8ee1f

File tree

11 files changed

+688
-1420
lines changed

11 files changed

+688
-1420
lines changed

backend/intercept/csrf.go

Lines changed: 0 additions & 55 deletions
This file was deleted.

backend/intercept/session.go

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,8 @@
11
package intercept
22

33
import (
4+
"net/http"
5+
46
"github.com/chaitin/koalaqa/pkg/context"
57
"github.com/chaitin/koalaqa/pkg/util"
68
"github.com/gin-contrib/sessions"
@@ -26,6 +28,7 @@ func newSession() Interceptor {
2628
}
2729

2830
func (s *session) Intercept(ctx *context.Context) {
31+
ctx.SetSameSite(http.SameSiteStrictMode)
2932
s.handler(ctx.Context)
3033
}
3134

backend/router/csrf.go

Lines changed: 0 additions & 39 deletions
This file was deleted.

0 commit comments

Comments
 (0)