fix settings page csrf

templates/settings/tabs/email_templates.html

@@ -1,4 +1,4 @@
-{% macro email_templates_tab(templates) %}
+{% macro email_templates_tab(templates, csrf_token) %}
 <div class="row">
     <div class="col-12">
         <div class="card">
@@ -33,24 +33,27 @@
                 </div>
 
                 <!-- Template Editor -->
-                <div class="card">
+                <div class="card mb-4" id="templateEditor" style="display: none;">
                     <div class="card-header bg-light">
                         <h6 class="mb-0">Template Editor</h6>
                     </div>
                     <div class="card-body">
-                        <div class="mb-3">
-                            <label for="templateSubject" class="form-label">Subject</label>
-                            <input type="text" class="form-control" id="templateSubject" placeholder="Enter email subject">
-                        </div>
-                        <div class="mb-3">
-                            <label for="templateBody" class="form-label">Body</label>
-                            <textarea id="templateBody" class="form-control"></textarea>
-                        </div>
-                        <div class="text-end">
-                            <button type="button" class="btn btn-primary" id="saveTemplate">
-                                <i class="fas fa-save me-2"></i>Save Template
-                            </button>
-                        </div>
+                        <form id="templateForm">
+                            <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+                            <div class="mb-3">
+                                <label for="templateSubject" class="form-label">Subject</label>
+                                <input type="text" class="form-control" id="templateSubject" name="subject" required>
+                            </div>
+                            <div class="mb-3">
+                                <label for="templateBody" class="form-label">Body</label>
+                                <textarea class="form-control" id="templateBody" name="body" rows="10" required></textarea>
+                            </div>
+                            <div class="d-flex justify-content-end">
+                                <button type="submit" class="btn btn-primary">
+                                    <i class="fas fa-save me-1"></i> Save Template
+                                </button>
+                            </div>
+                        </form>
                     </div>
                 </div>
             </div>
@@ -241,7 +244,8 @@ document.addEventListener('DOMContentLoaded', function() {
     }
 
     // Handle template save
-    $('#saveTemplate').on('click', function() {
+    $('#templateForm').on('submit', function(event) {
+        event.preventDefault();
         const templateId = $('#templateSelect').val();
         const subject = $('#templateSubject').val();
         const body = $('#templateBody').summernote('code');
@@ -252,7 +256,7 @@ document.addEventListener('DOMContentLoaded', function() {
         }
         
         // Show loading state
-        const saveButton = this;
+        const saveButton = this.querySelector('button[type="submit"]');
         const originalText = saveButton.innerHTML;
         saveButton.disabled = true;
         saveButton.innerHTML = '<i class="fas fa-spinner fa-spin me-2"></i>Saving...';