kill-the-news/src/types/hono.d.ts at a0415cdc4155d62ad9bca2c750a85a2fd3ba696d - kill-the-news - Unsupervised Code

GitHub/kill-the-news

mirror of https://github.com/juherr/kill-the-news.git synced 2026-06-20 22:03:48 +00:00

Files

T

Julien Herr a0415cdc41 refactor: replace custom HMAC CSRF with hono/csrf middleware

Removes 38-line hand-rolled HMAC-SHA256 implementation in favour of
the built-in hono/csrf, which validates the Origin header natively.

- Delete src/utils/csrf.ts
- Replace custom CSRF middleware with hono/csrf (Origin-header check)
- Remove csrfToken from ContextVariableMap, layout(), forms, and JS fetch() calls
- Update admin tests: swap X-CSRF-Token for Origin header

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-22 10:28:26 +02:00

9 lines

166 B

TypeScript

Raw Blame History

 import { Env } from "./index";
 // Extend Hono's types to include our custom environment
 declare module "hono" {
   interface ContextVariableMap {
     env: Env;
   }
 }