Add comment about BE cookie

Emyrk · Emyrk · commit 484fe2b80b18 · 2022-09-13T12:09:33.000-04:00
diff --git a/site/webpack.dev.ts b/site/webpack.dev.ts
@@ -52,6 +52,8 @@ const config: Configuration = {
     devMiddleware: {
       publicPath: "/",
       headers: {
+        // This header corresponds to "src/api/api.ts"'s hardcoded FE token.
+        // This is the secret side of the CSRF double cookie submit method.
         "Set-Cookie":
           "csrf_token=JXm9hOUdZctWt0ZZGAy9xiS/gxMKYOThdxjjMnMUyn4=; Path=/; HttpOnly; SameSite=Lax",
       },
