GoWeb/middleware/csrf.go

23 lines
518 B
Go
Raw Normal View History

package middleware
import (
"GoWeb/security"
"log"
"net/http"
)
2023-07-23 04:37:38 +00:00
// Csrf validates the CSRF token and returns the handler function if it succeded
func Csrf(f func(w http.ResponseWriter, r *http.Request)) func(w http.ResponseWriter, r *http.Request) {
return func(w http.ResponseWriter, r *http.Request) {
// Verify csrf token
_, err := security.VerifyCsrfToken(r)
if err != nil {
log.Println("Error verifying csrf token")
http.Error(w, "Forbidden", http.StatusForbidden)
return
}
f(w, r)
}
}