laravel如何关闭CSRF验证
laravel测试post接口时,返回结果提示419,之所以如此,是因为CSRF验证导致的。
CSRF:跨站请求伪造。
要想暂时关闭CSRF验证,只能是将测试接口加入白名单。
修改app\Http\Middleware\VerifyCsrfToken.php文件
<?php
namespace App\Http\Middleware;
use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as Middleware;
class VerifyCsrfToken extends Middleware
{
/**
* The URIs that should be excluded from CSRF verification.
*
* @var array<int, string>
*/
protected $except = [
//跳过CSRF验证的路由地址
'/add',
];
}
protected $except = [
//所有表单提交均跳过CSRF验证
'*',
];