Elgato_dark/bunkerweb
1
0
Fork 0
mirror of https://github.com/bunkerity/bunkerweb synced 2026-05-24 09:28:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add debug logging for CSRF error handling in main.py

Browse source
This commit is contained in:
Théophile Diot 2025-01-15 12:34:07 +01:00
parent 788c2c56bc
commit ccc25fb9f7
No known key found for this signature in database
GPG key ID: FA995104A0BA376A
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/ui/main.py
View file

@ -9,6 +9,7 @@ from secrets import token_urlsafe
from signal import SIGINT, signal, SIGTERM
from sys import path as sys_path
from time import time
from traceback import format_exc
for deps_path in [join(sep, "usr", "share", "bunkerweb", *paths) for paths in (("deps", "python"), ("utils",), ("api",), ("db",))]:
@ -250,6 +251,7 @@ def handle_csrf_error(_):
:param e: The exception object
:return: A template with the error message and a 401 status code.
"""
LOGGER.debug(format_exc())
LOGGER.error(f"CSRF token is missing or invalid for {request.path} by {current_user.get_id()}")
session.clear()
logout_user()