# frozen_string_literal: true

Warden::Manager.after_authentication do |record, warden, options|
  clean_up_for_winning_strategy = !warden.winning_strategy.respond_to?(:clean_up_csrf?) ||
    warden.winning_strategy.clean_up_csrf?
  if Kingsman.clean_up_csrf_token_on_authentication && clean_up_for_winning_strategy
    if warden.request.respond_to?(:reset_csrf_token)
      # Rails 7.1+
      warden.request.reset_csrf_token
    else
      warden.request.session.try(:delete, :_csrf_token)
    end
  end
end