Merge pull request 'fix path for antiCsrfTokenExceptions' (!25) from bugfix/fix-path-for-csrf-exceptions into master

Reviewed-on: #25
2023-04-16 22:09:15 +02:00 · 2023-04-16 22:09:15 +02:00 · 4161abe098
commit 4161abe098
parent d2ef9bb18a 8777d931a4
1 changed files with 1 additions and 1 deletions
--- a/web.php
+++ b/web.php
@ -106,7 +106,7 @@ if (!Container::$request->session()->has('anti_csrf_token')) {
 $appConfig = [
    'antiCsrfTokenName' => 'anti_csrf_token',
    'antiCsrfTokenErrorResponse' => ['error' => 'no_valid_anti_csrf_token'],
-    'antiCsrfTokenExceptions' => ['oauth/token'],
+    'antiCsrfTokenExceptions' => ['/oauth/token'],
    'loginRouteId' => 'login',
    'error404View' => 'error/404'
 ];