hdygxsj commented on PR #13235: URL: https://github.com/apache/dolphinscheduler/pull/13235#issuecomment-1413979729
Some changes have been made to the content of pr 1. Added an api for obtaining the csrf token. When the api is requested, the csrf token will also be added to the cookie 2. The front-end will request this api to obtain the token and store it in pinia before login 3. The front-end will fetch the token from the pinia and add it to the Http header when making an Http request 4. The http request will be intercepted by spring security's Csrf filter and compare the token in the http header to the token in the cookie, unless the http request header contains a token. http requests that contain tokens are validated by the token interceptor -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
