Get a CSRF token for the current session family

curl -X GET "https://mail.haltman.io/api/auth/csrf" \
  -H "Content-Type: application/json"

const response = await fetch("https://mail.haltman.io/api/auth/csrf", {
  method: "GET",
  headers: {
  "Content-Type": "application/json"
}
});

const data = await response.json();
console.log(data);

package main

import (
    "fmt"
    "net/http"
)

func main() {

    req, err := http.NewRequest("GET", "https://mail.haltman.io/api/auth/csrf", nil)
    if err != nil {
        panic(err)
    }

    req.Header.Set("Content-Type", "application/json")

    client := &http.Client{}
    resp, err := client.Do(req)
    if err != nil {
        panic(err)
    }
    defer resp.Body.Close()

    fmt.Println("Response Status:", resp.Status)
}

require 'net/http'
require 'json'

uri = URI('https://mail.haltman.io/api/auth/csrf')
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = true

request = Net::HTTP::Get.new(uri)
request['Content-Type'] = 'application/json'

response = http.request(request)
puts response.body

{
  "ok": true,
  "csrf_token": "example_string"
}

GET

/api/auth/csrf

GET

API Key (cookie: __Host-access)

__Host-accessstring

Required

Access-session cookie used for user and admin authentication.

API Key (cookie: __Host-refresh)

__Host-refreshstring

Required

Refresh-session cookie used to rotate sessions and derive CSRF tokens.

Request Preview

Response

Response will appear here after sending the request

Authentication

path

parameterstring

Required

API Key for authentication. Access-session cookie used for user and admin authentication.

path

parameterstring

Required

API Key for authentication. Refresh-session cookie used to rotate sessions and derive CSRF tokens.

Responses

okboolean

Required

csrf_tokenstring

Required

Was this page helpful?

Raise an issue

Last updated 2 days ago

Built with Documentation.AI