Using enctype="multipart/form-data" ends with csrf error
Question
I am using multer and csurf package.
What is problem is that when i add enctype="multipart/form-data" in form i get invalid csrd token.
app.js
// CSRF BEFORE ROUTES!!!
app.use(bodyParser.urlencoded({
extended: false
}))
app.use(cookieParser())
app.use(csrf());
app.use(function (req, res, next) {
res.locals.csrfToken = req.csrfToken();
next();
});
// Routes
app.use("/", webRoutes);
app.use("/cms", cmsRoutes);
and part of my users route which is inside my cmsRoutes
router.post("/edit", isAuthenticated, upload.single('avatar'), profile.user_edit_profile);
I found other people having the same problem. But cant find any solution to this.
1 answers
solution1
0 ACCPTED 2018-12-13 18:16:24
Solved. Just needed to put MULTER BEFORE CSRF.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
I get CSRF error when using enctype=“multipart/form-data”
Form with Post Method and enctype Multipart/form-data is not being submitted on Nodejs Express multer module
How to get arrays/objects sent via form in sails.js (with enctype multipart/form-data)
Unable to read a jade form field when it has enctype=“multipart/form-data” (Nodejs)
Parse node.js express app, form enctype=“multipart/form-data” destroys request body?
express-validator giving undefined value when form set to enctype='multipart/form-data'
Insert data into MongoDB and upload image issue with enctype=“multipart/form-data”
“Missing credentials” with PassportJS when I put enctype=“multipart/form-data” and an input[type=“file”]
enctype=“multipart/form-data” always return null input but it is a must for multer to work how can we fix this?
POST using multipart/form-data in NodeJS
Related Tags