MFA

2026-01-16 18:04:39 -05:00
parent 63385e049c
commit cf97dffbfb
31 changed files with 4405 additions and 56 deletions
--- a/backend/middleware/csrf.js
+++ b/backend/middleware/csrf.js
@@ -28,8 +28,7 @@ const csrfProtection = (req, res, next) => {
  }

  // Get token from header or body
-  const token =
-    req.headers["x-csrf-token"] || req.body.csrfToken || req.query.csrfToken;
+  const token = req.headers["x-csrf-token"] || req.body.csrfToken;

  // Get token from cookie
  const cookieToken = req.cookies && req.cookies["csrf-token"];