From 9a4408e797c6c60db785a2b6a62b02d8e5c7c686 Mon Sep 17 00:00:00 2001
From: Gronod <gordon@i3omb.com>
Date: Thu, 21 May 2026 02:17:48 +0100
Subject: [PATCH] Fix CSRF token and currentUser references in api.js

- Use state.csrfToken instead of undefined csrfToken in handleLogout
- Use state.currentUser instead of undefined currentUser in handleLogout
- Use state.csrfToken instead of undefined csrfToken in enableSonarrWebhook
- Fixes ReferenceError bugs in logout and webhook functions
---
 client/src/api.js | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/client/src/api.js b/client/src/api.js
index 0a4d7a3..598017d 100644
--- a/client/src/api.js
+++ b/client/src/api.js
@@ -57,10 +57,10 @@ export async function handleLogout() {
   try {
     await fetch('/api/auth/logout', {
       method: 'POST',
-      headers: csrfToken ? { 'X-CSRF-Token': csrfToken } : {}
+      headers: state.csrfToken ? { 'X-CSRF-Token': state.csrfToken } : {}
     });
-    currentUser = null;
-    csrfToken = null;
+    state.currentUser = null;
+    state.csrfToken = null;
     return { success: true };
   } catch (err) {
     console.error('Logout failed:', err);
@@ -203,7 +203,7 @@ export async function enableSonarrWebhook() {
   try {
     const res = await fetch('/api/sonarr/notifications/sofarr-webhook', {
       method: 'POST',
-      headers: { 'X-CSRF-Token': csrfToken || '' }
+      headers: { 'X-CSRF-Token': state.csrfToken || '' }
     });
     if (!res.ok) throw new Error('Failed to enable');
     await fetchWebhookStatus();