fix: silence csrf forbidden toast

ssongliu · ssongliu · commit e383417c839a · 2026-04-09T21:49:13.000+08:00
diff --git a/frontend/src/api/index.ts b/frontend/src/api/index.ts
@@ -18,6 +18,11 @@ const config = {
     withCredentials: true,
 };
 
+const isCsrfForbidden = (response?: AxiosResponse<any>) => {
+    const message = response?.data?.message;
+    return typeof message === 'string' && message.toLowerCase().includes('csrf token invalid');
+};
+
 class RequestHttp {
     service: AxiosInstance;
     public constructor(config: AxiosRequestConfig) {
@@ -118,6 +123,9 @@ class RequestHttp {
                             router.push({ name: 'Expired' });
                             return;
                         case 403:
+                            if (isCsrfForbidden(response)) {
+                                return Promise.reject(error);
+                            }
                             if (response.data && response.data['message']) {
                                 MsgError(response.data['message']);
                             } else {
