From e383417c839a2353231f55c8b421f8b99d4b81ed Mon Sep 17 00:00:00 2001
From: ssongliu <sloooop1x@gmail.com>
Date: Thu, 9 Apr 2026 21:49:13 +0800
Subject: [PATCH] fix: silence csrf forbidden toast

---
 frontend/src/api/index.ts | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/frontend/src/api/index.ts b/frontend/src/api/index.ts
index f44dc70fc5c9..637b730a1a41 100644
--- a/frontend/src/api/index.ts
+++ b/frontend/src/api/index.ts
@@ -18,6 +18,11 @@ const config = {
     withCredentials: true,
 };
 
+const isCsrfForbidden = (response?: AxiosResponse<any>) => {
+    const message = response?.data?.message;
+    return typeof message === 'string' && message.toLowerCase().includes('csrf token invalid');
+};
+
 class RequestHttp {
     service: AxiosInstance;
     public constructor(config: AxiosRequestConfig) {
@@ -118,6 +123,9 @@ class RequestHttp {
                             router.push({ name: 'Expired' });
                             return;
                         case 403:
+                            if (isCsrfForbidden(response)) {
+                                return Promise.reject(error);
+                            }
                             if (response.data && response.data['message']) {
                                 MsgError(response.data['message']);
                             } else {