Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
mixejuxix2019-07-22 12:03:11
Laravel
mixejuxix, 2019-07-22 12:03:11

How to make csrf protection for api requests?

Hi, tell me, how to make protection from csrf for API routes?
I have a nuxt SPA application on the front, with authorization via api Route::group(['middleware' => 'auth:api'])
Everything is clear for the admin - when authorizing by login and password, he receives an api_token, which I save in the session
But how to be there I want to make a form that the guest must fill out, without authorization at all? How to make protection from csrf?
Should I make some kind of ajax request to get the csrf token or what?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
K
Konstantin B., 2019-07-22
@Kostik_1993

CSRF has nothing to do with it. It's not made for antispam sake
Antispam - I hope you highlighted that word above.

Report
A
Andrey Suha, 2019-07-22
@andreysuha

Can skip cross-domain requests only from the domain on which the front is spinning? If not suitable, then make such an intermediary only for the form route

Similar questions
4
4sadly2020-01-12 20:58:17
How to programmatically press a key in the active window? 2Reply
A
Alexander Koregin2019-12-06 13:30:46
Why is authentication not saved in Laravel? 0Reply
B
BonBon Slick2017-07-09 16:26:34
Is it possible to create a Create/Update Request at the same time as creating a model? 1Reply
D
dind2015-08-01 08:30:27
How to fix composer: command not found error? 1Reply
S
Sergei Gurdjiyan2017-07-11 12:33:06
How to create sprite svg on Laravel MIX? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question