fix: send CSRF-Token with GET requests

The new api expects this and there's no harm in sending it. Doing so should make the exam specs pass.
freeCodeCamp · May 1, 2024 · d45347f · d45347f
1 parent dd58e2d
commit d45347f
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/client/src/utils/ajax.ts b/client/src/utils/ajax.ts
@@ -36,7 +36,10 @@ export interface ResponseWithData<T> {
 // TODO: Might want to handle flash messages as close to the request as possible
 // to make use of the Response object (message, status, etc)
 async function get<T>(path: string): Promise<ResponseWithData<T>> {
-  const response = await fetch(`${base}${path}`, defaultOptions);
+  const response = await fetch(`${base}${path}`, {
+    ...defaultOptions,
+    headers: { 'CSRF-Token': getCSRFToken() }
+  });
 
   return combineDataWithResponse(response);
 }