from flask import request, g, session
from airflow.www.app import cached_app

def csrf_injection_middleware():
    """Middleware pour forcer le token CSRF dans les requêtes Flask"""
    app = cached_app(config=None)
    @app.before_request
    def add_csrf_token():
        if 'csrf_token' in session:
            g.csrf_token = session['csrf_token']
            request.headers['X-CSRF-Token'] = session['csrf_token']

    return app