Applications needs to be authenticated with API server on different domain.
And fixes #125, #242
Intent
Cookie based authentication should work along CSRF protection.
Implementation
Instead of sending CSRF Token from server via cookie, now it will be provided in head section.
Any request which was meant to get CSRF token, should process response extract CSRF token and save in cookie involves
[x] Web component of sasjs/server if running on another domain
[x] Adapter flow should also be updated, code section
[ ] Same change is required for SAS side [N/A]
Checks
[x] Code is formatted correctly (npm run lint:fix).
Issue
Applications needs to be authenticated with API server on different domain. And fixes #125, #242
Intent
Cookie based authentication should work along CSRF protection.
Implementation
Instead of sending CSRF Token from server via cookie, now it will be provided in head section. Any request which was meant to get CSRF token, should process response extract CSRF token and save in cookie involves
Checks
npm run lint:fix
).npm test
).