Closed kevin-netsrik closed 5 years ago
Please note it is not working if you just change the src/image-upload.js.
have to build minified version from bin/release.sh.
Hi,
CSRF it a discovery for me.
I'm perfectly understand your idea. Let's me propose you other solution.
Your proposal are now integrate into the version 0.1.3.
:D
I am trying to use this for image upload, but found that it cannot pass through CI CSRF even with token added in header.
after check the source code and CI CSRF documentation, I found that CI do not use header for CSRF verification. It use form data instead.
so I modified the sendToServer function in order to accept extra data for CI CSRF, and here is the code
and for CI csrf token name & hash, you may create JS variables from CI security class