01_FHEMWEB.pm: change return code for bad csrf from 401 to 400 (Forum #67848)

git-svn-id: https://svn.fhem.de/fhem/trunk@13563 2b470e98-0d58-463d-a4d8-8e2adae1ed80
2025-03-12 16:46:35 +00:00 · 2017-03-01 12:05:12 +00:00 · 2017-03-01 12:05:12 +00:00 · 7002566cbd
commit 7002566cbd
parent c9ac23c1ae
3 changed files with 4 additions and 4 deletions
--- a/fhem/FHEM/01_FHEMWEB.pm
+++ b/fhem/FHEM/01_FHEMWEB.pm
@ -817,7 +817,7 @@ FW_answerCall($)
    if($supplied ne $want) {
      Log3 $FW_wname, 3, "FHEMWEB $FW_wname CSRF error: $supplied ne $want. ".
                         "For detals see the csrfToken FHEMWEB attribute";
-      $FW_httpRetCode = "401 Unauthorized";
+      $FW_httpRetCode = "400 Bad Request";
      return 0;
    }
  }
--- a/fhem/www/pgm2/fhemdoc_modular.js
+++ b/fhem/www/pgm2/fhemdoc_modular.js
@ -25,7 +25,7 @@ fd_fC(fn, callback)
  $.ajax({
    url:cmd, method:'POST', cache:false, success:callback,
    error:function(xhr, status, err) {
-      if(xhr.status == 401 && csrfToken) {
+      if(xhr.status == 400 && csrfToken) {
        csrfToken = "";
        fd_csrfRefresh(function(){fd_fC(fn, callback)});
      } else {
--- a/fhem/www/pgm2/fhemweb.js
+++ b/fhem/www/pgm2/fhemweb.js
@ -406,7 +406,7 @@ FW_cmd(arg, callback)
        FW_errmsg(req.responseText, 5000);
    },
    error:function(xhr, status, err) {
-      if(xhr.status == 401 && typeof FW_csrfToken != "undefined") {
+      if(xhr.status == 400 && typeof FW_csrfToken != "undefined") {
        FW_csrfToken = "";
        FW_csrfRefresh(function(){FW_cmd(arg, callback)});
      }
@ -759,7 +759,7 @@ FW_doUpdate(evt)

  } else {
    if(FW_pollConn.readyState == 4 && !FW_leaving) {
-      if(FW_pollConn.status == "401") {
+      if(FW_pollConn.status == "400") {
        location.reload();
        return;
      }