Do not run CSRF middleware on JSON Accept header

2018-10-22 23:58:28 +02:00 · 2018-10-22 23:58:28 +02:00 · 3416f731e7
parent 1cdbec7d5e
commit 3416f731e7
--- a/app/Http/Middleware/VerifyCsrfToken.php
+++ b/app/Http/Middleware/VerifyCsrfToken.php
@ -21,4 +21,13 @@ class VerifyCsrfToken extends Middleware
    protected $except = [
        //
    ];
+
+    public function handle($request, \Closure $next)
+    {
+        if($request->format() == 'json') {
+            return $next($request);
+        } else {
+            return parent::handle($request, $next);
+        }
+    }
 }