API: Remove unused CSRF token logic

2020-06-09 14:45:48 -05:00 · 2020-06-09 14:45:48 -05:00 · 1b36699021
commit 1b36699021
parent 95a9163883
1 changed files with 1 additions and 13 deletions
--- a/app/soapbox/api.js
+++ b/app/soapbox/api.js
@ -2,7 +2,6 @@

 import axios from 'axios';
 import LinkHeader from 'http-link-header';
-import ready from './ready';

 export const getLinks = response => {
  const value = response.headers.link;
@ -14,17 +13,6 @@ export const getLinks = response => {
  return LinkHeader.parse(value);
 };

-let csrfHeader = {};
-
-function setCSRFHeader() {
-  const csrfToken = document.querySelector('meta[name=csrf-token]');
-  if (csrfToken) {
-    csrfHeader['X-CSRF-Token'] = csrfToken.content;
-  }
-}
-
-ready(setCSRFHeader);
-
 const getToken = (getState, authType) =>
  getState().getIn(['auth', authType, 'access_token']);

@ -32,7 +20,7 @@ export default (getState, authType = 'user') => {
  const accessToken = getToken(getState, authType);

  return axios.create({
-    headers: Object.assign(csrfHeader, accessToken ? {
+    headers: Object.assign(accessToken ? {
      'Authorization': `Bearer ${accessToken}`,
    } : {}),