summaryrefslogtreecommitdiffstats
path: root/vendor/github.com/labstack/echo/v4/middleware/csrf.go
diff options
context:
space:
mode:
Diffstat (limited to 'vendor/github.com/labstack/echo/v4/middleware/csrf.go')
-rw-r--r--vendor/github.com/labstack/echo/v4/middleware/csrf.go18
1 files changed, 16 insertions, 2 deletions
diff --git a/vendor/github.com/labstack/echo/v4/middleware/csrf.go b/vendor/github.com/labstack/echo/v4/middleware/csrf.go
index 61299f5c..ea90fdba 100644
--- a/vendor/github.com/labstack/echo/v4/middleware/csrf.go
+++ b/vendor/github.com/labstack/echo/v4/middleware/csrf.go
@@ -61,7 +61,13 @@ type (
// Indicates SameSite mode of the CSRF cookie.
// Optional. Default value SameSiteDefaultMode.
CookieSameSite http.SameSite `yaml:"cookie_same_site"`
+
+ // ErrorHandler defines a function which is executed for returning custom errors.
+ ErrorHandler CSRFErrorHandler
}
+
+ // CSRFErrorHandler is a function which is executed for creating custom errors.
+ CSRFErrorHandler func(err error, c echo.Context) error
)
// ErrCSRFInvalid is returned when CSRF check fails
@@ -154,8 +160,9 @@ func CSRFWithConfig(config CSRFConfig) echo.MiddlewareFunc {
lastTokenErr = ErrCSRFInvalid
}
}
+ var finalErr error
if lastTokenErr != nil {
- return lastTokenErr
+ finalErr = lastTokenErr
} else if lastExtractorErr != nil {
// ugly part to preserve backwards compatible errors. someone could rely on them
if lastExtractorErr == errQueryExtractorValueMissing {
@@ -167,7 +174,14 @@ func CSRFWithConfig(config CSRFConfig) echo.MiddlewareFunc {
} else {
lastExtractorErr = echo.NewHTTPError(http.StatusBadRequest, lastExtractorErr.Error())
}
- return lastExtractorErr
+ finalErr = lastExtractorErr
+ }
+
+ if finalErr != nil {
+ if config.ErrorHandler != nil {
+ return config.ErrorHandler(finalErr, c)
+ }
+ return finalErr
}
}
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-02 01:25:33 +0000