fix: add content-type headers to auth server requests.

zicklag · zicklag · commit 79698e79fce2 · 2025-04-15T13:23:34.000-05:00
diff --git a/src/routes/(app)/auth/v1/providers/callback/+page.svelte b/src/routes/(app)/auth/v1/providers/callback/+page.svelte
@@ -20,7 +20,10 @@
 		let res = await fetch('/auth/v1/providers/callback', {
 			method: 'post',
 			body: JSON.stringify(data),
-			headers: [['csrf-token', localStorage.getItem('csrfToken')!]]
+			headers: [
+				['csrf-token', localStorage.getItem('csrfToken')!],
+				['content-type', 'application/json']
+			]
 		});
 
 		if (res.status === 202) {
diff --git a/src/routes/(app)/auth/v1/users/register/+page.svelte b/src/routes/(app)/auth/v1/users/register/+page.svelte
@@ -41,7 +41,8 @@
 					given_name: 'Weird',
 					family_name: 'User',
 					pow: powResult
-				})
+				}),
+				headers: [['content-type', 'application/json']]
 			});
 			await checkResponse(registerResp);
 
diff --git a/src/routes/(app)/login/+page.svelte b/src/routes/(app)/login/+page.svelte
@@ -75,7 +75,10 @@
 			let res = await fetch('/auth/v1/providers/login', {
 				method: 'post',
 				body: JSON.stringify(data),
-				headers: [['csrf-token', localStorage.getItem('csrfToken')!]]
+				headers: [
+					['csrf-token', localStorage.getItem('csrfToken')!],
+					['content-type', 'application/json']
+				]
 			});
 			await checkResponse(res);
 			const xsrfToken = await res.text();
@@ -135,7 +138,10 @@
 					nonce: nonce,
 					scopes
 				}),
-				headers: [['csrf-token', localStorage.getItem('csrfToken')!]]
+				headers: [
+					['csrf-token', localStorage.getItem('csrfToken')!],
+					['content-type', 'application/json']
+				]
 			});
 			await handleAuthResp(authResp, true);
 			return;
@@ -176,7 +182,10 @@
 		const authResp = await fetch('/auth/v1/oidc/authorize', {
 			method: 'post',
 			body: JSON.stringify(req),
-			headers: [['csrf-token', localStorage.getItem('csrfToken')!]]
+			headers: [
+				['csrf-token', localStorage.getItem('csrfToken')!],
+				['content-type', 'application/json']
+			]
 		});
 		await handleAuthResp(authResp);
 	}
diff --git a/src/routes/(app)/logout/+page.svelte b/src/routes/(app)/logout/+page.svelte
@@ -21,7 +21,10 @@
 		try {
 			const resp = await fetch('/auth/v1/oidc/logout', {
 				method: 'post',
-				headers: [['csrf-token', csrf!]],
+				headers: [
+					['csrf-token', csrf!],
+					['content-type', 'application/json']
+				],
 				body: JSON.stringify(req)
 			});
 			await checkResponse(resp);
