From 56e32688e034c48b724a4a474c96326fb3de3f35 Mon Sep 17 00:00:00 2001
From: rassadin11 <artem.rassadin.05@mail.ru>
Date: Sat, 9 May 2026 01:20:30 +0300
Subject: [PATCH] f

---
 src/shared/api/base.ts | 1 +
 src/shared/api/csrf.ts | 4 +++-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/shared/api/base.ts b/src/shared/api/base.ts
index 78baecb..dff3e34 100644
--- a/src/shared/api/base.ts
+++ b/src/shared/api/base.ts
@@ -6,6 +6,7 @@ async function request<T>(path: string, options: RequestInit = {}): Promise<T> {
 
   const res = await fetch(`${API_URL}${path}`, {
     ...options,
+    credentials: 'include',
     headers: {
       'Content-Type': 'application/json',
       'X-CSRF-Token': token,
diff --git a/src/shared/api/csrf.ts b/src/shared/api/csrf.ts
index 236ff6e..52601d4 100644
--- a/src/shared/api/csrf.ts
+++ b/src/shared/api/csrf.ts
@@ -9,7 +9,9 @@ let cachedToken: string | null = null
 
 export async function getCsrfToken(): Promise<string> {
   if (cachedToken) return cachedToken
-  const res = await fetch(`${API_URL}/csrf/token`)
+  const res = await fetch(`${API_URL}/csrf/token`, {
+    credentials: 'include',
+  })
   const data: CsrfResponse = await res.json()
   cachedToken = data.token
   return cachedToken