csrf handling mit der korrekten middleware verbunden

2025-12-23 09:54:26 +01:00
parent 826e2a93ce
commit ed5c1918fc
3 changed files with 10 additions and 3 deletions
--- a/bootstrap/app.php
+++ b/bootstrap/app.php
@@ -64,6 +64,10 @@ return Application::configure(basePath: dirname(__DIR__))
        ]);

        $middleware->encryptCookies(except: ['appearance', 'sidebar_state']);
+        $middleware->validateCsrfTokens(except: [
+            'paddle/webhook',
+            'paddle/webhook*',
+        ]);

        $middleware->web(append: [
            \App\Http\Middleware\SetLocale::class,