1. Forum
  2. Modules
  3. How to skip CSRF verification in pyrocsm?
Login Register
  1. Forum
  2. Modules
  3. How to skip CSRF verification in pyrocsm?
How to skip CSRF verification in pyrocsm?
Created 5 years ago by dilusha100

I need to skip csrf verification for one of my endpoint. So I add that route to $except array in Anomaly\Streams\Platform\Http\Middleware\VerifyCsrfToken like this, protected $except = [ "/payments/notify" ];

But still it not skip the csrf verification. So, please help me with this.

ryanthompson  —  5 years ago Best Answer

@dilusha100 just whipped this up: https://pyrocms.com/documentation/streams-platform/1.6/the-basics/csrf-protection

Link
ryanthompson  —  5 years ago

Check this doc out: https://pyrocms.com/documentation/streams-platform/1.6/reference/configuration#security

The top outlines how to override streams configuration. You can also use route action parameters: https://pyrocms.com/documentation/streams-platform/1.6/the-basics/routing#route-variables

I'll add some more terminology in that last doc and connect the two cause they both come in searching the forum - but not as obvious as they SHOULD be. Let me know if you have any other questions!

Link
ryanthompson  —  5 years ago Best Answer

@dilusha100 just whipped this up: https://pyrocms.com/documentation/streams-platform/1.6/the-basics/csrf-protection

Link