feat(auth): Add optional CSRF protection (#697)

* fix(auth): Missing CSRF middleware Resolves LGTM alert/error for query js/missing-token-validation More info: https://lgtm.com/rules/1506064038914/
2025-09-17 17:24:35 +02:00 · 2021-01-24 21:27:57 -05:00
parent 4b0241c3b3
commit 6e2589178b
7 changed files with 98 additions and 3 deletions
--- a/server/lib/settings.ts
+++ b/server/lib/settings.ts
@@ -48,6 +48,7 @@ export interface SonarrSettings extends DVRSettings {
 export interface MainSettings {
  apiKey: string;
  applicationUrl: string;
+  csrfProtection: boolean;
  defaultPermissions: number;
  hideAvailable: boolean;
 }
@@ -155,6 +156,7 @@ class Settings {
        apiKey: '',
        applicationUrl: '',
        hideAvailable: false,
+        csrfProtection: false,
        defaultPermissions: Permission.REQUEST,
      },
      plex: {