[yew-devel] [PATCH yew-comp 0/2] make http wasm client get fresh csrf tokens from index document
Lukas Wagner
l.wagner at proxmox.com
Fri Dec 19 14:14:48 CET 2025
On Wed Dec 17, 2025 at 3:26 PM CET, Shannon Sterz wrote:
> this series makes the http wasm client respect the fresher csrf token
> in the document index. fixing a bug that would kick out users after
> the first non-GET request. for a more detailed explanation see patch
I definitely ran into this bug a couple of times (and always was quite
confused about why it happened), thanks for investigating and fixing
this!
> 1.
>
> changes since v1:
>
> * split csrf token portion of extract_auth_from_cookie into a separate
> function and add better documentation (thanks @ Thomas Lamprecht)
> * add a patch that refactors extract_auth_from_cookie to return a
> ticket and be more efficient and legible.
>
> Shannon Sterz (2):
> http wasm client: load csrf token from global Proxmox object
> http wasm client: refactor extract_auth_from_cookie to return a Ticket
>
> src/http_client_wasm.rs | 54 ++++++++++++++++++++++++++---------------
> 1 file changed, 35 insertions(+), 19 deletions(-)
>
Looks good from what I can tell (not at all familiar with this code
section though). Also did some general smoke testing, general auth and
POSTs work as they should.
Reviewed-by: Lukas Wagner <l.wagner at proxmox.com>
Tested-by: Lukas Wagner <l.wagner at proxmox.com>
More information about the yew-devel
mailing list