Fork me on GitHub

Hi everyone, does anybody have experience with implementing refreshing token (oauth2) in ring?


Hi. I would like to make AJAX POST requests from the browser to my ring server. How do I get the anti-request-forgery-token which is stored in my http session to the browser? Is it ok to expose a public GET route which returns the token? Do I need to provide this route myself? Or does ring-defaults already provide such a route somehow? Thank you!


Typically you add it to the page you’re generating, either as a form hidden field, or inside a script element where the anti-forgery token is assigned to a variable.