You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Fix CSRF validation failures on video recording uploads — VideoRecorder was using plain fetch() instead of fetchWithCsrf() for upload-url, complete-upload, and share POST requests, causing middleware to reject every request with 403
Add CSRF token cache TTL — Cached tokens now expire after 30 minutes to prevent stale token mismatches when cookies rotate
Auto-retry on CSRF failure — fetchWithCsrf() now automatically fetches a fresh token and retries once on CSRF 403 errors
Fix response body consumption — Use response.clone() before reading the body during CSRF error detection, preventing callers from getting empty responses
Harden CSRF error detection — Use case-insensitive match for CSRF error string detection
