summaryrefslogtreecommitdiff
path: root/kitchen
diff options
context:
space:
mode:
authorCaine <caine@jihakuz.xyz>2026-04-02 23:10:52 +0100
committerCaine <caine@jihakuz.xyz>2026-04-02 23:10:52 +0100
commit1410108ac62e4edf90a313dd38f1b66bcc847037 (patch)
treec44cfb3fe3a5d4cfeef65b0fc9aa38f365649ce0 /kitchen
parentf7f9e7057c4f2593bb78df654c1b85cc6e59573f (diff)
Fix CSRF for HTMX POST requests
Diffstat (limited to 'kitchen')
-rw-r--r--kitchen/templates/kitchen/base.html8
1 files changed, 8 insertions, 0 deletions
diff --git a/kitchen/templates/kitchen/base.html b/kitchen/templates/kitchen/base.html
index 0bdc5f3..6bd33bf 100644
--- a/kitchen/templates/kitchen/base.html
+++ b/kitchen/templates/kitchen/base.html
@@ -6,6 +6,14 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>{% block title %}Kitchen{% endblock %}</title>
<script src="{% static 'kitchen/htmx.min.js' %}"></script>
+ {% csrf_token %}
+ <script>
+ // Add CSRF token to all HTMX requests
+ document.addEventListener('htmx:configRequest', function(evt) {
+ const token = document.querySelector('[name=csrfmiddlewaretoken]');
+ if (token) evt.detail.headers['X-CSRFToken'] = token.value;
+ });
+ </script>
<style>
:root {
--bg-dark: #15131c;