Use meta tag CSRF and not window.csrfToken (#49)

* Use meta tag CSRF and not window.csrfToken * Typo - my bad it should use .content instead of .value
forem · Mar 1, 2022 · 8926bba · 8926bba
1 parent f366039
commit 8926bba
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/Sources/ForemWebView/ForemWebView.swift b/Sources/ForemWebView/ForemWebView.swift
@@ -138,7 +138,8 @@ open class ForemWebView: WKWebView {
 
  // Function that fetches the CSRF Token required for direct interaction with the Forem servers
  func fetchCSRF(completion: @escaping (String?) -> Void) {
- evaluateJavaScript(wrappedJS("window.csrfToken")) { result, error in
+ let javascript = "document.querySelector(`meta[name='csrf-token']`)?.content"
+ evaluateJavaScript(wrappedJS(javascript)) { result, error in
  if let error = error {
  print("Unable to fetch CSRF Token: \(error.localizedDescription)")
  completion(nil)