x/web-app-template
Archived
Template
2
0
Fork 0
Code Issues 13 Pull Requests 4 Actions Packages Activity
This repository has been archived on 2025-08-09. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
8aeb284d3015448e00abb0971f2abdcc5909ad0a
web-app-template/handler/middleware/cross_site_request_forgery.go
Tim Wundenberg 8aeb284d30
Some checks failed
Build Docker Image / Build-Docker-Image (push) Failing after 37s
Details
tbs
2024-12-04 23:36:54 +01:00

22 lines
534 B
Go
Raw Blame History

package middleware
import "net/http"
func CrossSiteRequestForgery() func(http.Handler) http.Handler {
return func(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
if r.Method == "POST" {
// Check the CSRF token
csrfToken := r.Header.Get("X-CSRF-Token")
sessionToken := r.Header.Get("X-Session-Token")
if csrfToken != sessionToken {
http.Error(w, "CSRF token mismatch", http.StatusForbidden)
return
}
}
next.ServeHTTP(w, r)
})
}
}
Reference in New Issue View Git Blame Copy Permalink