Pulse/internal/config
rcourtman d52ac6d8b5 Fix CSRF token validation and improve token management
- Add Access-Control-Expose-Headers to allow frontend to read X-CSRF-Token response header
- Implement proactive CSRF token issuance on GET requests when session exists but CSRF cookie is missing
- Ensures frontend always has valid CSRF token before making POST requests
- Fixes 403 Forbidden errors when toggling system settings

This resolves CSRF validation failures that occurred when CSRF tokens expired or were missing while valid sessions existed.
2025-11-05 09:23:44 +00:00
..
api_tokens.go feat: add native Windows service support and expandable host details 2025-10-23 22:11:56 +00:00
api_tokens_test.go Add API token scopes and standalone host agent 2025-10-23 11:40:31 +00:00
client_helpers.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
config.go Fix CSRF token validation and improve token management 2025-11-05 09:23:44 +00:00
credentials.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
docker_metadata.go Implement Docker metadata API endpoints 2025-10-28 22:56:53 +00:00
export.go feat: production-ready import/export with API tokens and transactional rollback 2025-10-21 14:37:44 +00:00
guest_metadata.go perf: reduce polling allocations and guest metadata load 2025-10-25 13:12:47 +00:00
import_transaction.go feat: production-ready import/export with API tokens and transactional rollback 2025-10-21 14:37:44 +00:00
oidc.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
persistence.go Fix CSRF token validation and improve token management 2025-11-05 09:23:44 +00:00
persistence_fail_test.go Harden setup token flow and enforce encrypted persistence 2025-10-25 16:00:37 +00:00
persistence_test.go Add API token scopes and standalone host agent 2025-10-23 11:40:31 +00:00
registration.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
watcher.go Add disk metrics, block I/O, and mount details to Docker monitoring 2025-10-29 12:05:36 +00:00