node.js - how to bypass/avoid crsf on API post? -


in node application expressjs have crsf middleware enabled. works great, have routes starting /api , accepting post request fail (forbidden) because there no crsf token of course. how can bypass/avoid crsf /api posts?

you can conditionally pass inside of middleware, 1 option pattern this:

function yourmiddleware(req, res, next) {   if ( null !== req.path.match(/^\/api/) ) {     next();   }   //your crsf behavior here } 

Comments

Popular posts from this blog

windows - Single EXE to Install Python Standalone Executable for Easy Distribution -

c# - Access objects in UserControl from MainWindow in WPF -

javascript - How to name a jQuery function to make a browser's back button work? -