From 0aef9df793de230265d72a7022368beafd97b446 Mon Sep 17 00:00:00 2001
From: Toby Zerner <toby.zerner@gmail.com>
Date: Thu, 3 Dec 2015 21:00:32 +1030
Subject: [PATCH] Add CSRF token to auth request

---
 extensions/pusher/js/forum/src/main.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/extensions/pusher/js/forum/src/main.js b/extensions/pusher/js/forum/src/main.js
index dda92de9f..f6d9a92e4 100644
--- a/extensions/pusher/js/forum/src/main.js
+++ b/extensions/pusher/js/forum/src/main.js
@@ -15,7 +15,7 @@ app.initializers.add('flarum-pusher', () => {
       authEndpoint: app.forum.attribute('apiUrl') + '/pusher/auth',
       auth: {
         headers: {
-          'Authorization': 'Token ' + app.session.token
+          'X-CSRF-Token': app.session.csrfToken
         }
       }
     });