From 4ba3d49ce37c958cb37cad718016ac4259adbd37 Mon Sep 17 00:00:00 2001
From: Purple <dev@prpl.it>
Date: Sun, 18 Jan 2026 02:27:04 +0000
Subject: [PATCH] fix cf access login

---
 .DS_Store              | Bin 6148 -> 8196 bytes
 docker-compose.yml     |   6 ++++--
 webapp/includes/app.js |   3 +--
 3 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/.DS_Store b/.DS_Store
index c5e8094c5c092c19601db42836d3f4dd975459f8..4a75b98342c658edcc95024b62eefc990b524d26 100644
GIT binary patch
delta 814
zcmZWoTS!zv7@lu;b<fe0j+bn!l`dOIBDPkLM3*%cH8n-u)QYyVd&WF;_MCO+>?&PY
z3E#T0_)wGt(L+%bh~21{pt8$ry%;?OQS_7)^wLAKdklgG{`vmz|L6bapJ8SyI2G~{
zLa;ZbH4u_>C1E+F#o4i{Z2dZTXM3MwF5$l9nVn>~;gzK9qzB$<#kH6*csda^tSBL_
zd(niUb2}LP0GHcSQ0SH9qGDy4zpcGvU#AkG<!POb_atoHGWh|P<N_nKl#g2D9Wl%7
zO|o2mFlHI4xXB~5ET$T<l%d+J$uRo$6HLTPc`RueMz6*7oXqf0#%2?CF8N<>=peU}
zc5_~BNEaJ8t7wX|J|<N4G;0ysyi%O>-vN1{q?DGGS5z*qTCsLx?dENbyPAe#Ry@v3
zn}-cG%8bFZ)BYhXBP5!WOw8H<7i}EYgxhUt`iL$f$8}R1Fx5Cak_&gK-0n#*lWFgL
zD_5=dS1W4<(>m9q1`ChtnmszK@)$EU-8>c+g=|79L!C^$&g%8b28n7iEpTX!vPq(y
za)uT<yv|=Q(FYQB<*Cx(-zrm8qHc%Q`M1jwg+q2IJ7vmc>Tzhb5|U*~^2FclZ<Xk4
ziAqx7@1+DnwT>HjHWJEv`6C5FK|wOYWbtCE$rjQ=y2w$IBqzyva+zEw_sL5#PZr20
z@|AoizX6n>0zT9rh(_#2JNBaoedtFRM-YLEC^W=jB7re*oWf~jFo`obi*vYui^$>%
zu3`q)a1*z18+WkhE*|0$9^(m~;|1pN3UBZh@9+_y@eM!n{Sp@(B;8B61o%0<=t|7h
lC|}$~zG4w<&As|L)&0voU0T^R-KJ1Ul;%DJnTseh?myBS&_@6O

delta 115
zcmZp1XfcprU|?W$DortDU=RQ@Ie-{MGjUEV6q~50$jG)aU^gQp+hiVrkCP7zr)+Fk
x#<G~5gF}!Rs0auIxPgQ#Nd3mb@640=WgI~UGB7eQuz+YLh>2ja&G9^Qm;sla5^Mkf

diff --git a/docker-compose.yml b/docker-compose.yml
index f11f3af..dec4499 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -6,7 +6,7 @@ services:
     image: alpine:latest
     container_name: geofeed-git-sync
     environment:
-      GIT_REPO: ${GIT_REPO:-https://git.prpl.tools/PurpleComputing/geofeed-manager.git}
+      GIT_REPO: ${GIT_REPO:-https://git.prpl.tools/PurpleComputing/ip-manager.git}
       GIT_BRANCH: ${GIT_BRANCH:-main}
     volumes:
       - webapp_code:/app
@@ -73,7 +73,9 @@ services:
       # IP Registry API for IP enrichment
       IPREGISTRY_API_KEY: ${IPREGISTRY_API_KEY:-}
     volumes:
-      - webapp_code:/app:ro
+      # Use local webapp folder for development (comment out for production)
+      - ./webapp:/app:ro
+      # - webapp_code:/app:ro
     depends_on:
       mariadb:
         condition: service_healthy
diff --git a/webapp/includes/app.js b/webapp/includes/app.js
index 514ea5c..d92e3e8 100644
--- a/webapp/includes/app.js
+++ b/webapp/includes/app.js
@@ -6,7 +6,6 @@ let deleteEntryId = null;
 let selectedFile = null;
 let clientLogos = {};
 let auditPage = 1;
-const csrfToken = '<?php echo generateCSRFToken(); ?>';
 
 // Initialize
 document.addEventListener('DOMContentLoaded', () => {
@@ -120,7 +119,7 @@ async function api(action, params = {}, method = 'GET', body = null) {
     const options = { method };
     if (body) {
         options.headers = { 'Content-Type': 'application/json' };
-        options.body = JSON.stringify({ ...body, csrf_token: csrfToken });
+        options.body = JSON.stringify({ ...body, csrf_token: (typeof CSRF_TOKEN !== 'undefined' ? CSRF_TOKEN : '') });
     }
 
     const response = await fetch(url, options);