feat: csrf tokens handling
This commit is contained in:
parent
ab29c33f5b
commit
6995ce58f6
12 changed files with 233 additions and 5 deletions
|
|
@ -1,5 +1,7 @@
|
|||
get:
|
||||
summary: Get title description
|
||||
security:
|
||||
- JwtAuthCookies: []
|
||||
operationId: getTitle
|
||||
parameters:
|
||||
- in: path
|
||||
|
|
|
|||
|
|
@ -28,12 +28,16 @@ get:
|
|||
|
||||
patch:
|
||||
summary: Partially update a user account
|
||||
security:
|
||||
- JwtAuthCookies: []
|
||||
description: |
|
||||
Update selected user profile fields (excluding password).
|
||||
Password updates must be done via the dedicated auth-service (`/auth/`).
|
||||
Fields not provided in the request body remain unchanged.
|
||||
operationId: updateUser
|
||||
parameters:
|
||||
- $ref: '../parameters/access_token.yaml' # ← для поля в UI и GoDoc
|
||||
- $ref: '../parameters/xsrf_token_cookie.yaml' # ← для CSRF
|
||||
- name: user_id
|
||||
in: path
|
||||
required: true
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue