// In production, this should check CSRF, and not pass the session ID.
// The customer ID for the portal should be pulled from the
// authenticated user on the server.
document.addEventListener("DOMContentLoaded", async () => {
  const searchParams = new URLSearchParams(window.location.search)
  if (searchParams.has("session_id")) {
    const session_id = searchParams.get("session_id")
    document.getElementById("session-id").setAttribute("value", session_id)
  }
})