Set headers in js and go files to X-Csrf-Token

10 years ago · 9476e58de9
parent 9ddd545473
commit 9476e58de9
1 changed files with 1 additions and 0 deletions
--- a/cmd/web.go
+++ b/cmd/web.go
@ -95,6 +95,7 @@ func newMacaron() *macaron.Macaron {
 	m.Use(csrf.Generate(csrf.Options{
 		Secret:    setting.SecretKey,
 		SetCookie: true,
+		Header:    "X-Csrf-Token",
 	}))
 	m.Use(toolbox.Toolboxer(m, toolbox.Options{
 		HealthCheckFuncs: []*toolbox.HealthCheckFuncDesc{