bustikiller/wedding-planner-frontend
1
0
Fork 0
Code Issues 1 Pull Requests 8 Actions Packages Projects Releases Wiki Activity

Preload a CSRF token on the registration page
All checks were successful
Playwright Tests / test (pull_request) Has been skipped
Details
Check usage of free licenses / build-static-assets (pull_request) Successful in 28s
Details
Add copyright notice / copyright_notice (pull_request) Successful in 42s
Details

Browse Source
This commit is contained in:
Manuel Bustillo 2024-12-08 09:31:31 +01:00
parent f68587419d
commit b4cfd91ff4
2 changed files with 27 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
app/[slug]/page.tsx
View File

@ -5,10 +5,22 @@
import LoginForm from '@/app/ui/components/login-form'; import LoginForm from '@/app/ui/components/login-form';
import RegistrationForm from '@/app/ui/components/registration-form'; import RegistrationForm from '@/app/ui/components/registration-form';
import { useParams } from 'next/navigation' import { useParams } from 'next/navigation'
import { useEffect } from 'react';
import { retrieveCSRFToken } from '../api/authentication';
import { getCsrfToken } from '../lib/utils';
export default async function Page() { export default async function Page() {
const params = useParams<{ slug: string }>() const params = useParams<{ slug: string }>()
localStorage.setItem('slug', await params.slug);
useEffect(() => {
if (getCsrfToken() == 'unknown') {
retrieveCSRFToken();
}
}, []);
if (typeof window !== 'undefined') {
localStorage.setItem('slug', await params.slug);
}
return ( return (
<main className="flex min-h-screen flex-col p-6"> <main className="flex min-h-screen flex-col p-6">

19
app/api/authentication.tsx
View File

@ -35,7 +35,7 @@ export function logout({ onLogout }: { onLogout: () => void }) {
} }
function flattenErrors(errors: StructuredErrors): string[] { function flattenErrors(errors: StructuredErrors): string[] {
if(errors instanceof Array) { if (errors instanceof Array) {
return errors; return errors;
} }
return Object.keys(errors).map((key) => { return Object.keys(errors).map((key) => {
@ -43,7 +43,16 @@ function flattenErrors(errors: StructuredErrors): string[] {
}); });
} }
export function register({slug, email, password, passwordConfirmation, captcha, onRegister, onError}: { // At this moment we're making an initial request to get a valid CSRF token
export function retrieveCSRFToken() {
return fetch(`/api/token`, {
headers: {
'Accept': 'application/json',
}
}).then((response) => { return null });
}
export function register({ slug, email, password, passwordConfirmation, captcha, onRegister, onError }: {
slug: string, slug: string,
email: string, email: string,
password: string, password: string,
@ -51,11 +60,11 @@ export function register({slug, email, password, passwordConfirmation, captcha,
captcha: Captcha, captcha: Captcha,
onRegister: () => void, onRegister: () => void,
onError: (errors: string[]) => void onError: (errors: string[]) => void
}){ }) {
fetch(`/api/${slug}/users`, { fetch(`/api/${slug}/users`, {
method: 'POST', method: 'POST',
body: JSON.stringify( body: JSON.stringify(
{ {
user: { email, password, password_confirmation: passwordConfirmation }, user: { email, password, password_confirmation: passwordConfirmation },
captcha: { id: captcha.id, answer: captcha.answer } captcha: { id: captcha.id, answer: captcha.answer }
} }
@ -66,7 +75,7 @@ export function register({slug, email, password, passwordConfirmation, captcha,
'X-CSRF-TOKEN': getCsrfToken(), 'X-CSRF-TOKEN': getCsrfToken(),
} }
}).then((response) => { }).then((response) => {
if(response.ok) { if (response.ok) {
response.json().then(onRegister); response.json().then(onRegister);
} else { } else {
response.json().then((data: any) => { response.json().then((data: any) => {