Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-10-26 16:46:12 +01:00
Code Issues Packages Projects Releases Wiki Activity

chore: add comment for clarification

Browse Source
This commit is contained in:
Julian Lam
2020-12-07 15:44:34 -05:00
parent 13d5a1440b
commit 6037f5ee2c
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/middleware/user.js
View File

@@ -34,6 +34,7 @@ module.exports = function (middleware) {
const loginAsync = util.promisify(req.login).bind(req); const loginAsync = util.promisify(req.login).bind(req);
if (req.loggedIn) { if (req.loggedIn) {
// If authenticated via cookie (express-session), protect routes with CSRF checking
if (res.locals.isAPI) { if (res.locals.isAPI) {
await middleware.applyCSRFasync(req, res); await middleware.applyCSRFasync(req, res);
} }