CSRF middleware separated.

2024-11-27 11:20:39 -06:00 · 2017-09-09 22:03:54 +02:00 · 2017-09-09 22:03:54 +02:00 · 8823666aa9
commit 8823666aa9
parent ff9146ab91
1 changed files with 5 additions and 45 deletions
--- a/app/Http/Middleware/VerifyCsrfToken.php
+++ b/app/Http/Middleware/VerifyCsrfToken.php
@ -1,57 +1,17 @@
 <?php
-/**
- * VerifyCsrfToken.php
- * Copyright (C) 2016 thegrumpydictator@gmail.com
- *
- * This software may be modified and distributed under the terms of the
- * Creative Commons Attribution-ShareAlike 4.0 International License.
- *
- * See the LICENSE file for details.
- */
-declare(strict_types=1);

 namespace FireflyIII\Http\Middleware;

-use Carbon\Carbon;
-use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as BaseVerifier;
-use Symfony\Component\HttpFoundation\Cookie;
+use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as Middleware;

-/**
- * Class VerifyCsrfToken
- *
- * @package FireflyIII\Http\Middleware
- */
-class VerifyCsrfToken extends BaseVerifier
+class VerifyCsrfToken extends Middleware
 {
    /**
     * The URIs that should be excluded from CSRF verification.
     *
     * @var array
     */
-    protected $except
-        = [
-            //
-        ];
-
-    /**
-     * Add the CSRF token to the response cookies.
-     *
-     * @param  \Illuminate\Http\Request                   $request
-     * @param  \Symfony\Component\HttpFoundation\Response $response
-     *
-     * @return \Symfony\Component\HttpFoundation\Response
-     */
-    protected function addCookieToResponse($request, $response)
-    {
-        $config = config('session');
-
-        $response->headers->setCookie(
-            new Cookie(
-                'XSRF-TOKEN', $request->session()->token(), Carbon::now()->getTimestamp() + 60 * $config['lifetime'],
-                $config['path'], $config['domain'], $config['secure'], true
-            )
-        );
-
-        return $response;
-    }
+    protected $except = [
+        //
+    ];
 }