webui: csrf token handling moved to util.js

59ca3ce3 · Dányi Bence · 49a0cb12 · 59ca3ce3
Commit 59ca3ce3 authored Feb 19, 2013 by Dányi Bence
Hide whitespace changes
Inline Side-by-side

Showing with 29 additions and 0 deletions

one/static/script/util.js
+29 -0

No files found.
--- a/one/static/script/util.js
+++ b/one/static/script/util.js
 var cloud = (function(cloud) {
+
+    function getCookie(name) {
+        var cookieValue = null;
+        if(document.cookie && document.cookie != '') {
+            var cookies = document.cookie.split(';');
+            for(var i = 0; i < cookies.length; i++) {
+                var cookie = jQuery.trim(cookies[i]);
+                if(cookie.substring(0, name.length + 1) == (name + '=')) {
+                    cookieValue = decodeURIComponent(cookie.substring(name.length + 1));
+                    break;
+                }
+            }
+        }
+        return cookieValue;
+    }
+    var csrftoken = getCookie('csrftoken');
+
+    function csrfSafeMethod(method) {
+        return(/^(GET|HEAD|OPTIONS|TRACE)$/.test(method));
+    }
+    $.ajaxSetup({
+        crossDomain: false,
+        beforeSend: function(xhr, settings) {
+            if(!csrfSafeMethod(settings.type)) {
+                xhr.setRequestHeader("X-CSRFToken", csrftoken);
+            }
+        }
+    });
+
    /**
     * Convert bytes to human readable format
     */