correction faille de securité
All checks were successful
Build and Push App / build (push) Successful in 5m50s

This commit is contained in:
2026-05-01 21:48:00 +02:00
parent 9c003d1b7d
commit f450f8ee03
10 changed files with 78 additions and 19 deletions

View File

@@ -77,7 +77,9 @@ const BusinessDetailPage = () => {
// 2. Try API (Database)
try {
const res = await fetch(`/api/businesses/${id}`);
const res = await fetch(`/api/businesses/${id}`, {
headers: user ? { 'x-user-id': user.id } : {}
});
if (res.ok) {
const data = await res.json();
setBusiness(data);
@@ -104,7 +106,10 @@ const BusinessDetailPage = () => {
}
// Also increment views count in DB (Legacy support)
fetch(`/api/businesses/${id}/view`, { method: 'POST' }).catch(console.error);
fetch(`/api/businesses/${id}/view`, {
method: 'POST',
headers: user ? { 'x-user-id': user.id } : {}
}).catch(console.error);
} else {
setBusiness(null);
}
@@ -135,7 +140,9 @@ const BusinessDetailPage = () => {
// 5. Fetch all ratings
try {
setLoadingRatings(true);
const ratingsRes = await fetch(`/api/businesses/${id}/ratings`);
const ratingsRes = await fetch(`/api/businesses/${id}/ratings`, {
headers: user ? { 'x-user-id': user.id } : {}
});
if (ratingsRes.ok) {
const ratingsData = await ratingsRes.json();
setRatings(ratingsData);