export function initCsrf() {
  const tokenInput = document.querySelector('input[name="csrf_token"]');
  const token = tokenInput ? tokenInput.value : null;
  if (!token) {
    return;
  }

  document.querySelectorAll('form[method="post"]').forEach((form) => {
    if (!form.querySelector('input[name="csrf_token"]')) {
      const hidden = document.createElement('input');
      hidden.type = 'hidden';
      hidden.name = 'csrf_token';
      hidden.value = token;
      form.appendChild(hidden);
    }
  });
}