From 2d8dcc87ff19e913459845ccb8b173fc6da6abe2 Mon Sep 17 00:00:00 2001
From: I-Al-Istannen <i-al-istannen@users.noreply.github.com>
Date: Tue, 25 May 2021 19:23:06 +0200
Subject: [PATCH] Send CSRF token in TFA request

---
 PFERD/crawl/ilias/kit_ilias_web_crawler.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/PFERD/crawl/ilias/kit_ilias_web_crawler.py b/PFERD/crawl/ilias/kit_ilias_web_crawler.py
index fa68ee7..60be6d8 100644
--- a/PFERD/crawl/ilias/kit_ilias_web_crawler.py
+++ b/PFERD/crawl/ilias/kit_ilias_web_crawler.py
@@ -531,13 +531,15 @@ class KitShibbolethLogin:
         # credentials rather than after asking.
         form = soup.find("form", {"method": "post"})
         action = form["action"]
+        csrf_token = form.find("input", {"name": "csrf_token"})["value"]
 
         # Equivalent: Enter token in
         # https://idp.scc.kit.edu/idp/profile/SAML2/Redirect/SSO
         url = "https://idp.scc.kit.edu" + action
         data = {
             "_eventId_proceed": "",
-            "j_tokenNumber": tfa_token
+            "j_tokenNumber": tfa_token,
+            "csrf_token": csrf_token
         }
         return await _post(session, url, data)