MVP

2025-10-18 17:55:32 +02:00
parent 254e6490b8
commit 91b78cb284
65 changed files with 4481 additions and 1078 deletions
--- a/src/hooks/useCsrf.ts
+++ b/src/hooks/useCsrf.ts
@@ -0,0 +1,62 @@
+'use client';
+
+import { useEffect, useState } from 'react';
+
+/**
+ * Hook to fetch and manage CSRF token for client-side requests
+ */
+export function useCsrf() {
+  const [csrfToken, setCsrfToken] = useState<string | null>(null);
+  const [loading, setLoading] = useState(true);
+
+  useEffect(() => {
+    async function fetchCsrfToken() {
+      try {
+        const response = await fetch('/api/csrf');
+        const data = await response.json();
+        setCsrfToken(data.csrfToken);
+      } catch (error) {
+        console.error('Failed to fetch CSRF token:', error);
+      } finally {
+        setLoading(false);
+      }
+    }
+
+    fetchCsrfToken();
+  }, []);
+
+  /**
+   * Helper function to add CSRF token to fetch headers
+   */
+  const getHeaders = (additionalHeaders: HeadersInit = {}) => {
+    const headers: HeadersInit = {
+      'Content-Type': 'application/json',
+      ...additionalHeaders,
+    };
+
+    if (csrfToken) {
+      headers['x-csrf-token'] = csrfToken;
+    }
+
+    return headers;
+  };
+
+  /**
+   * Wrapper for fetch with automatic CSRF token injection
+   */
+  const fetchWithCsrf = async (url: string, options: RequestInit = {}) => {
+    const headers = getHeaders(options.headers as HeadersInit);
+
+    return fetch(url, {
+      ...options,
+      headers,
+    });
+  };
+
+  return {
+    csrfToken,
+    loading,
+    getHeaders,
+    fetchWithCsrf,
+  };
+}