From c15b0a200aea26d8c8de250e42cbdf72e499c413 Mon Sep 17 00:00:00 2001
From: Hana Wang <h.wang081@gmail.com>
Date: Wed, 25 Feb 2015 10:51:11 -0800
Subject: [PATCH] Attach CSRF token to header if it exists

---
 src/main.js | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/main.js b/src/main.js
index 0bd844e..0a2a1d7 100644
--- a/src/main.js
+++ b/src/main.js
@@ -63,6 +63,9 @@ var request = function (method, url, data, contentType, headers) {
       xhr.setRequestHeader('Accept', 'application/json');
       xhr.setRequestHeader('Content-Type', contentType);
 
+      var csrfTokenSelector = document.querySelector('meta[name="csrf-token"]');
+      if (!! csrfTokenSelector && !! csrfTokenSelector.content) xhr.setRequestHeader('X-CSRF-Token', csrfTokenSelector.content);
+
       // Add passed headers
       Object.keys(headers).forEach(function (header) {
         xhr.setRequestHeader(header, headers[header]);