Skip to content

Commit c6c4141

Browse files
EmyrkEmyrk
committed
Try exempting first user
1 parent 3828354 commit c6c4141

File tree

1 file changed

+3
-0
lines changed

1 file changed

+3
-0
lines changed

coderd/httpmw/csrf.go

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -23,6 +23,9 @@ func CSRF(secureCookie bool) func(next http.Handler) http.Handler {
2323
// All GET requests are exempt by default.
2424
mw.ExemptPath("/api/v2/csp/reports")
2525

26+
// This should not be required?
27+
mw.ExemptRegexp(regexp.MustCompile("/api/v2/users/first"))
28+
2629
// Agent authenticated routes
2730
mw.ExemptRegexp(regexp.MustCompile("api/v2/workspaceagents/me/*"))
2831
mw.ExemptRegexp(regexp.MustCompile("api/v2/workspaceagents/*"))

0 commit comments

Comments
 (0)