Fork me on GitHub
#ring
<
2020-03-26
>
zikajk13:03:11

Hi everyone, does anybody have experience with implementing refreshing token (oauth2) in ring?

witek16:03:08

Hi. I would like to make AJAX POST requests from the browser to my ring server. How do I get the anti-request-forgery-token which is stored in my http session to the browser? Is it ok to expose a public GET route which returns the token? Do I need to provide this route myself? Or does ring-defaults already provide such a route somehow? Thank you!

weavejester02:03:51

Typically you add it to the page you’re generating, either as a form hidden field, or inside a script element where the anti-forgery token is assigned to a variable.