fix: 🐞 bring back csrf vulnerability

yjaaidi · yjaaidi · commit 655476ba8002 · 2021-04-16T10:42:13.000+02:00
diff --git a/apps/websheep-api/src/app/shared/openapi/websheep.yaml b/apps/websheep-api/src/app/shared/openapi/websheep.yaml
@@ -182,6 +182,11 @@ paths:
           application/json:
             schema:
               $ref: '#/components/schemas/SheepRequest'
+          # Allow x-www-form-urlencoded in order to be able to
+          # bypass C.S.R.F. for exercices csrf2 & csrf3.
+          application/x-www-form-urlencoded:
+            schema:
+              $ref: '#/components/schemas/SheepRequest'
       responses:
         201:
           description: The created sheep
