Add CSRF token to logout form in base template

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-21 15:46:54 +00:00
parent 0bb057d65b
commit f2136d0cc2
1 changed files with 1 additions and 0 deletions
--- a/templates/federation/base.html
+++ b/templates/federation/base.html
@@ -20,6 +20,7 @@
            <a href="{{ url_for('identity.choose_username_form') }}" class="hover:underline">Choose username</a>
          {% endif %}
          <form method="post" action="{{ url_for('auth.logout') }}" class="inline">
+            <input type="hidden" name="csrf_token" value="{{ csrf_token() }}">
            <button type="submit" class="hover:underline">Logout</button>
          </form>
        {% else %}