next-csrf
Version:
CSRF mitigation library for Next.js
1 lines • 2.1 kB
JavaScript
module.exports=function(e,r){"use strict";var t={};function __webpack_require__(r){if(t[r]){return t[r].exports}var i=t[r]={i:r,l:false,exports:{}};e[r].call(i.exports,i,i.exports,__webpack_require__);i.l=true;return i.exports}__webpack_require__.ab=__dirname+"/";function startup(){return __webpack_require__(640)}return startup()}({640:function(e,r){"use strict";r.parse=parse;r.serialize=serialize;var t=decodeURIComponent;var i=encodeURIComponent;var a=/; */;var n=/^[\u0009\u0020-\u007e\u0080-\u00ff]+$/;function parse(e,r){if(typeof e!=="string"){throw new TypeError("argument str must be a string")}var i={};var n=r||{};var o=e.split(a);var s=n.decode||t;for(var p=0;p<o.length;p++){var u=o[p];var f=u.indexOf("=");if(f<0){continue}var c=u.substr(0,f).trim();var v=u.substr(++f,u.length).trim();if('"'==v[0]){v=v.slice(1,-1)}if(undefined==i[c]){i[c]=tryDecode(v,s)}}return i}function serialize(e,r,t){var a=t||{};var o=a.encode||i;if(typeof o!=="function"){throw new TypeError("option encode is invalid")}if(!n.test(e)){throw new TypeError("argument name is invalid")}var s=o(r);if(s&&!n.test(s)){throw new TypeError("argument val is invalid")}var p=e+"="+s;if(null!=a.maxAge){var u=a.maxAge-0;if(isNaN(u)||!isFinite(u)){throw new TypeError("option maxAge is invalid")}p+="; Max-Age="+Math.floor(u)}if(a.domain){if(!n.test(a.domain)){throw new TypeError("option domain is invalid")}p+="; Domain="+a.domain}if(a.path){if(!n.test(a.path)){throw new TypeError("option path is invalid")}p+="; Path="+a.path}if(a.expires){if(typeof a.expires.toUTCString!=="function"){throw new TypeError("option expires is invalid")}p+="; Expires="+a.expires.toUTCString()}if(a.httpOnly){p+="; HttpOnly"}if(a.secure){p+="; Secure"}if(a.sameSite){var f=typeof a.sameSite==="string"?a.sameSite.toLowerCase():a.sameSite;switch(f){case true:p+="; SameSite=Strict";break;case"lax":p+="; SameSite=Lax";break;case"strict":p+="; SameSite=Strict";break;case"none":p+="; SameSite=None";break;default:throw new TypeError("option sameSite is invalid")}}return p}function tryDecode(e,r){try{return r(e)}catch(r){return e}}}});