Abort with the pre-defined status code when handling XSRF error

As the status codes(422 and 417) are set in the error map, abort with them directly to active the pre-defined error handlers Signed-off-by: Wenkai Yin <yinw@vmware.com>
2024-11-22 01:50:53 +00:00 · 2019-11-19 18:55:54 +08:00 · 2019-11-19 18:55:54 +08:00 · 793047097c
commit 793047097c
parent 1923b8c767
1 changed files with 2 additions and 2 deletions
--- a/context/context.go
+++ b/context/context.go
@ -169,11 +169,11 @@ func (ctx *Context) CheckXSRFCookie() bool {
 		token = ctx.Request.Header.Get("X-Csrftoken")
 	}
 	if token == "" {
-		ctx.Abort(403, "'_xsrf' argument missing from POST")
+		ctx.Abort(422, "422")
 		return false
 	}
 	if ctx._xsrfToken != token {
-		ctx.Abort(403, "XSRF cookie does not match POST argument")
+		ctx.Abort(417, "417")
 		return false
 	}
 	return true