Inject CSRF token in line with new DRF template

Amsterdam · Jul 30, 2024 · 1223de2 · 1223de2
1 parent f6e9617
commit 1223de2
Showing 1 changed file with 5 additions and 5 deletions.
diff --git a/src/templates/dso_api/dynamic_api/api.html b/src/templates/dso_api/dynamic_api/api.html
@@ -287,11 +287,11 @@ <h5>Bronhouder: {{ authorization_grantor|default_if_none:"Onbekend"}}</h5>
     <option value="false">false</option>
   </datalist>
 </div>
-<script>
-  window.drf = {
-    csrfHeaderName: "{{ csrf_header_name|default:'X-CSRFToken' }}",
-    csrfToken: "{% if request %}{{ csrf_token }}{% endif %}"
-  };
+<script type="application/json" id="drf_csrf">
+  {
+    "csrfHeaderName": "{{ csrf_header_name|default:'X-CSRFToken' }}",
+    "csrfToken": "{% if request %}{{ csrf_token }}{% endif %}"
+  }
 </script>
 <script>
   const DATASET_URL = "{{ dataset_url }}";