Hi, I am trying to use the conduit api via javascript.
First I connect - and it works:
POST to ../api/conduit.connect
params:{"client":"My Conduit","clientVersion":1,"clientDescription":"Conduit Connector","user":"sales","host":"http://phab.com/api","authToken":1417182709,"authSignature":"4fdcdfcb61231f33e07fa44447ba8714788c509c"}
__conduit__:trueResponse:
{"result":{"connectionID":58,"sessionKey":"j3sk2uoqkaeuqqdlh6vfxvgztvqhxxodufr72dgf","userPHID":"PHID-USER-htxrhffjj2f3v6lu3cyo"},"error_code":null,"error_info":null}Next step:
POST to ../api/maniphest.createtask
params:{"title":"Test 3","description":"Test"}
__conduit__:{"sessionKey":"j3sk2uoqkaeuqqdlh6vfxvgztvqhxxodufr72dgf","connectionID":58}
output:jsonResults in:
{"result":null,"error_code":"ERR-CONDUIT-CORE","error_info":"You are trying to save some data to Phabricator, but the request your browser made included an incorrect token. Reload the page and try again. You may need to clear your cookies.\n\nThis was a Web request.\nThis request had no CSRF token."}I searched for many hours, looked at source-codes of other clients, but nothing helps.
How can I get a CSRF token?