From 4c045683ff46f14ef1c52924099ae5111af0d313 Mon Sep 17 00:00:00 2001
From: karishmas6 <carishmashukla28@gmail.com>
Date: Mon, 23 Sep 2024 23:47:10 +0530
Subject: [PATCH] feat: use csrf protection

---
 server/src/server.ts | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/server/src/server.ts b/server/src/server.ts
index 3e553367..f228597b 100644
--- a/server/src/server.ts
+++ b/server/src/server.ts
@@ -4,10 +4,14 @@ import cors from 'cors';
 import 'dotenv/config';
 import { record, workflow, storage, auth, integration } from './routes';
 import { BrowserPool } from "./browser-management/classes/BrowserPool";
-import logger from './logger'
+import logger from './logger';
+import cookieParser from 'cookie-parser';
+import csrf from 'csurf';
 import { SERVER_PORT } from "./constants/config";
 import { Server } from "socket.io";
 
+const csrfProtection = csrf({ cookie: true })
+
 const app = express();
 app.use(cors());
 app.use(express.json());
@@ -25,6 +29,9 @@ export const io = new Server(server);
  */
 export const browserPool = new BrowserPool();
 
+
+app.use(csrfProtection)
+
 app.use('/record', record);
 app.use('/workflow', workflow);
 app.use('/storage', storage);