Remove CSRF protection simulation from health check endpoint

DefinetlyNotAI · DefinetlyNotAI · commit 467192655e41 · 2025-12-22T23:41:00.000+04:00
Signed-off-by: Shahm Najeeb &lt;Shahm_Najeeb@outlook.com&gt;
diff --git a/app/api/auth/login/route.ts b/app/api/auth/login/route.ts
@@ -148,17 +148,6 @@ export async function GET(request: NextRequest) {
         const rateLimit = checkRateLimit(ip, 5, 15 * 60 * 1000, 30 * 60 * 1000);
         console.log("[AUTH DEBUG] Rate limit check:", {allowed: rateLimit.allowed});
 
-        // CSRF protection simulation (generate dummy request body)
-        const csrfCheck = await requireCsrfProtection(request);
-        if (csrfCheck.error) {
-            console.log("[AUTH DEBUG] Health check CSRF check failed");
-            return NextResponse.json(
-                {status: "error", message: "CSRF protection failed"},
-                {status: 400, headers: {"Content-Type": "application/json"}}
-            );
-        }
-        console.log("[AUTH DEBUG] Health check CSRF passed");
-
         // Simulate session token creation and cookie setting
         const token = await createSessionToken();
         await setSessionCookie(token);
