OG T 95de7e0e15 fix(web): 活躍事件 Y/n 按鈕補上 CSRF Token (P0 根本原因) ...

問題: DualStateIncidentCard 的 Y/n 按鈕呼叫 apiClient.signApproval/rejectApproval
時，沒有帶 X-CSRF-Token header 也沒有 credentials: 'include'
後端返回 403 CSRF token cookie missing

修復:
- api-client.ts: signApproval/rejectApproval 加入 csrfToken 參數
  + X-CSRF-Token header + credentials: 'include'
- dual-state-incident-card.tsx: 加入 useCSRF() hook，
  將 csrfToken 傳入 API 呼叫，更新 useCallback deps

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-03-31 22:45:27 +08:00

..

app

fix(i18n): 修復 placeholder 頁面硬編碼字串 + 擴展 ESLint ignore

2026-03-31 18:59:28 +08:00

components

fix(web): 活躍事件 Y/n 按鈕補上 CSRF Token (P0 根本原因)

2026-03-31 22:45:27 +08:00

hooks

feat(web): #126 Frontend Replay UI 整合

2026-03-31 16:04:44 +08:00

i18n

feat: add all application source code

2026-03-22 18:57:44 +08:00

lib

fix(web): 活躍事件 Y/n 按鈕補上 CSRF Token (P0 根本原因)

2026-03-31 22:45:27 +08:00

stores

feat(web): #15 SSE + Optimistic Updates (樂觀更新)

2026-03-31 11:13:12 +08:00

instrumentation.ts

feat: integrate Sentry + fix CI/CD issues

2026-03-24 15:19:52 +08:00

middleware.ts

fix(web): #17 i18n Hydration 防護 (NEXT_LOCALE Cookie)

2026-03-31 11:18:53 +08:00