Merge pull request #1140 from tomaioo/fix/security/potential-auth-token-leakage-to-third-pa

2026-05-24 16:49:09 -05:00 · 2026-04-25 19:28:22 -05:00
parent a6cb492756 f2326676ed
commit 6876e952ed
1 changed files with 4 additions and 4 deletions
@@ -10,10 +10,10 @@ export default async function fetchPatrons(api: Api | undefined): Promise<Patron
 	return new Promise((resolve, reject) => {
 		if (!api) return reject(new Error('No API instance provided'))

-		api.axiosInstance
-			.get(PATRON_API_ENDPOINT)
-			.then((res) => {
-				const patrons = res.data as Patron[]
+		fetch(PATRON_API_ENDPOINT)
+			.then(async (res) => {
+				if (!res.ok) throw new Error(`Request failed with status ${res.status}`)
+				const patrons = (await res.json()) as Patron[]
 				resolve(patrons)
 			})
 			.catch((err) => reject(err))