Stirling-PDF/stirling-pdf/build/resources/main/static/js/csrf.js

document.addEventListener('DOMContentLoaded', function() {
    // Get CSRF token from cookie
    const getCsrfToken = () => {
        return document.cookie
            .split('; ')
            .find(row => row.startsWith('XSRF-TOKEN='))
            ?.split('=')[1];
    };

    // Function to decode the URI-encoded cookie value
    const decodeCsrfToken = (token) => {
        if (token) {
            return decodeURIComponent(token);
        }
        return null;
    };

    // Find all forms and add CSRF token
    const forms = document.querySelectorAll('form');
    const csrfToken = decodeCsrfToken(getCsrfToken());

    // Only proceed if we have a cookie-based token
    if (csrfToken) {
        forms.forEach(form => {
            // Only now remove existing CSRF input fields since we have a new token
            const existingCsrfInputs = form.querySelectorAll('input[name="_csrf"]');
            existingCsrfInputs.forEach(input => input.remove());

            // Create and add new CSRF input field
            const csrfInput = document.createElement('input');
            csrfInput.type = 'hidden';
            csrfInput.name = '_csrf';
            csrfInput.value = csrfToken;
            form.appendChild(csrfInput);
        });
    }
});
csrf fixes (#2647) # Description Please provide a summary of the changes, including relevant motivation and context. Closes #(issue_number) ## Checklist - [ ] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [ ] I have performed a self-review of my own code - [ ] I have attached images of the change if it is UI based - [ ] I have commented my code, particularly in hard-to-understand areas - [ ] If my code has heavily changed functionality I have updated relevant docs on [Stirling-PDFs doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) - [ ] My changes generate no new warnings - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) 2025-01-08 17:10:34 +00:00			`document.addEventListener('DOMContentLoaded', function() {`
			`// Get CSRF token from cookie`
			`const getCsrfToken = () => {`
			`return document.cookie`
			`.split('; ')`
			`.find(row => row.startsWith('XSRF-TOKEN='))`
			`?.split('=')[1];`
			`};`

			`// Function to decode the URI-encoded cookie value`
			`const decodeCsrfToken = (token) => {`
			`if (token) {`
			`return decodeURIComponent(token);`
			`}`
			`return null;`
			`};`

			`// Find all forms and add CSRF token`
			`const forms = document.querySelectorAll('form');`
			`const csrfToken = decodeCsrfToken(getCsrfToken());`
Fix: Thymeleaf syntax `(/[[...]]/)` (#2659) # Description Please provide a summary of the changes, including relevant motivation and context. Closes #(issue_number) ## Checklist - [x] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [x] I have performed a self-review of my own code - [ ] I have attached images of the change if it is UI based - [ ] I have commented my code, particularly in hard-to-understand areas - [ ] If my code has heavily changed functionality I have updated relevant docs on [Stirling-PDFs doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) - [x] My changes generate no new warnings - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) 2025-01-12 01:18:35 +01:00
csrf fixes (#2647) # Description Please provide a summary of the changes, including relevant motivation and context. Closes #(issue_number) ## Checklist - [ ] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [ ] I have performed a self-review of my own code - [ ] I have attached images of the change if it is UI based - [ ] I have commented my code, particularly in hard-to-understand areas - [ ] If my code has heavily changed functionality I have updated relevant docs on [Stirling-PDFs doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) - [ ] My changes generate no new warnings - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) 2025-01-08 17:10:34 +00:00			`// Only proceed if we have a cookie-based token`
			`if (csrfToken) {`
			`forms.forEach(form => {`
			`// Only now remove existing CSRF input fields since we have a new token`
			`const existingCsrfInputs = form.querySelectorAll('input[name="_csrf"]');`
			`existingCsrfInputs.forEach(input => input.remove());`

			`// Create and add new CSRF input field`
			`const csrfInput = document.createElement('input');`
			`csrfInput.type = 'hidden';`
			`csrfInput.name = '_csrf';`
			`csrfInput.value = csrfToken;`
			`form.appendChild(csrfInput);`
			`});`
			`}`
Fix: Thymeleaf syntax `(/[[...]]/)` (#2659) # Description Please provide a summary of the changes, including relevant motivation and context. Closes #(issue_number) ## Checklist - [x] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [x] I have performed a self-review of my own code - [ ] I have attached images of the change if it is UI based - [ ] I have commented my code, particularly in hard-to-understand areas - [ ] If my code has heavily changed functionality I have updated relevant docs on [Stirling-PDFs doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) - [x] My changes generate no new warnings - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) 2025-01-12 01:18:35 +01:00			`});`