<!DOCTYPE html> <head> <meta name="csrf-param" content="authenticity_token" /> <meta name="csrf-token" content="wKAHFvazuS7QqwxcPWgB0loTf0fwwgDRaNfJ8sOn8y0GEDj_XL5ZxDlhaxlItrl2UZEIbzqcKiDKkh1wdzys1g" /> </head> <body> <form action="/users/auth/jwt" method="post" style="display:none"> <input name="authenticity_token"> </form> <script> //<![CDATA[ const csrfToken = document.querySelector('meta[name=csrf-token]').getAttribute('content'); document.querySelector('input[name=authenticity_token]').value = csrfToken; document.querySelector('form').submit(); //]]> </script></body>