fix: flash input data on CSRF error

adonisjs · Jan 22, 2024 · 0273f51 · 0273f51
1 parent bbb1d94
commit 0273f51
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/src/errors.ts b/src/errors.ts
@@ -18,6 +18,7 @@ export const E_BAD_CSRF_TOKEN = class InvalidCSRFToken extends Exception {
   message = 'Invalid or expired CSRF token'
 
   async handle(error: InvalidCSRFToken, ctx: HttpContext) {
+    ctx.session.flashExcept(['_csrf', '_method', 'password', 'password_confirmation'])
     ctx.session.flashErrors({
       [error.code]: error.message,
     })