From 4b4e4f2c098ab8c8e79b8d2fc08f1025218babc1 Mon Sep 17 00:00:00 2001
From: Varun Patil <radialapps@gmail.com>
Date: Mon, 30 Oct 2023 10:58:48 -0700
Subject: [PATCH] dav: add requested with header

Signed-off-by: Varun Patil <radialapps@gmail.com>
---
 src/services/dav/client.ts | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/src/services/dav/client.ts b/src/services/dav/client.ts
index 079e483e..f9c02073 100644
--- a/src/services/dav/client.ts
+++ b/src/services/dav/client.ts
@@ -29,15 +29,18 @@ const remote = generateRemoteUrl('dav');
 const client = createClient(remote);
 
 // set CSRF token header
-function setToken(token: string | null) {
+function setHeaders(token: string | null) {
   client.setHeaders({
+    // Add this so the server knows it is an request from the browser
+    'X-Requested-With': 'XMLHttpRequest',
+    // Inject user auth
     requesttoken: token ?? String(),
   });
 }
 
 // refresh headers when request token changes
-setToken(getRequestToken());
-onRequestTokenUpdate((t) => setToken(t));
+setHeaders(getRequestToken());
+onRequestTokenUpdate((t) => setHeaders(t));
 
 // Filenames start with this path
 export const remotePath = new URL(remote).pathname;