feat: add num_cities field to RegionSerializer, update RegionCard to display city count, and enhance CSRF token handling

2025-08-05 05:05:17 +02:00 · 2025-01-09 14:58:45 -05:00 · 2025-01-09 14:58:45 -05:00 · 22790ae7c0
commit 22790ae7c0
parent abe870506f
6 changed files with 30 additions and 7 deletions
--- a/frontend/src/routes/_allauth/[...path]/+server.ts
+++ b/frontend/src/routes/_allauth/[...path]/+server.ts
@ -53,18 +53,25 @@ async function handleRequest(

 	const headers = new Headers(request.headers);

+	// Delete existing csrf cookie by setting an expired date
+	cookies.delete('csrftoken', { path: '/' });
+
+	// Generate a new csrf token (using your existing fetchCSRFToken function)
 	const csrfToken = await fetchCSRFToken();
 	if (!csrfToken) {
 		return json({ error: 'CSRF token is missing or invalid' }, { status: 400 });
 	}

+	// Set the new csrf token in both headers and cookies
+	const cookieHeader = `csrftoken=${csrfToken}; Path=/; HttpOnly; SameSite=Lax`;
+
 	try {
 		const response = await fetch(targetUrl, {
 			method: request.method,
 			headers: {
 				...Object.fromEntries(headers),
 				'X-CSRFToken': csrfToken,
-				Cookie: `csrftoken=${csrfToken}`
+				Cookie: cookieHeader
 			},
 			body:
 				request.method !== 'GET' && request.method !== 'HEAD' ? await request.text() : undefined,