X-CSRF-Token should be ignored on GET requests

signalpoint / jDrupal

A JavaScript Library and API for Drupal Applications

http://jdrupal.tylerfrankenstein.com/

GNU General Public License v2.0

76 stars 38 forks source link

X-CSRF-Token should be ignored on GET requests #31

Open signalpoint opened 8 years ago

signalpoint commented 8 years ago

Right now GET requests can end up with a token attached (and potentially fetching a token from the server), and since the token isn't needed on GET requests we shouldn't be fetching/attaching it.