blazR
Reputation: 95
Laravel 5.4: Exclude a route with parameters from CSRF verification
As per Laravel 5.4 Docs, you can exclude a route from CSRF verification by adding the route to $except property at VerifyCsrfToken middleware. But for some reason, a route with parameters couldn't be excluded with exact route name unless excluded from main route itself.
Expected route to be excluded:
protected $except = [
'main/{id}/sub/*'
];
Only works through:
protected $except = [
'main/*'
];
How do you exclude a route with parameters from CSRF verification?
Upvotes: 6
Views: 5731
Answers (1)
Alexey Mezenin
Reputation: 163948
Since under the hood this feature uses request()->is() method, maybe this will work for you:
protected $except = [
'main/*/sub/*'
];
Upvotes: 12
Related Questions
- Excluding routes using regex from verifying CSRF token
- How to disable csrf protection for a route with parameter?
- disable csrf in laravel for specific route
- Disable required CSRF in POST method in selected route
- Remove Csrf verifcation of specific route
- How to disable csrf protection for a route with dynamic parameter?
- Remove csrf token only for single method - Laravel
- TokenMismatchException , despite excluding route
- Laravel disable csrf_token for single route
- Laravel 5 disable and excluding CSRF for single route