PHP Framework
Laravel
Exception handling content of TokenMismatchException in laravel framework
Exception handling content of TokenMismatchException in laravel framework
Jul 31, 2018 pm 03:27 PM
laravel Under the framework, sometimes when requesting using methods such as post or put, a TokenMismatchException in VerifyCsrfToken.php line 67 error will sometimes be reported. The reason is that laravel has anti-CSRF turned on by default.
There are two ways to solve this problem, one is to submit the token value when requesting, and the other is to exclude the requested route when preventing CSRF
Method 1: Pass the token value
When submitting the form:
<form action="photo/12" method="post">
<?php echo method_field('PUT'); ?>
<?php echo csrf_field(); ?>
<input type="submit" name="提交" />
</form>When using AJAX request:
<meta name="csrf-token" content="{{ csrf_token() }}">$.ajaxSetup({
headers: { 'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content')
}
});Method 2: Exclude the specified URL from CSRF protection
For example, the accessed URL is http://laravel.com/photo/12, and now you want to exclude routes related to photo resources, then add the route in App\Http\Middleware\VerifyCsrfToken::class as follows:
protected $except = [ 'photo', 'photo/*',
];
Note that method two will not be able to protect photo-related routes from CSRF, so please choose according to the actual situation
The above is the entire content of this article. For more laravel content, please pay attention to laravel framework introductory tutorial.
Recommended related articles:
In-depth analysis of appearance mode in Laravel framework
vue.js in laravel5.4 framework Implementing Ajax form submission error verification
Related video recommendations:
The latest five Laravel video tutorial recommendations in 2017
The above is the detailed content of Exception handling content of TokenMismatchException in laravel framework. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undress AI Tool
Undress images for free
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
What are policies in Laravel, and how are they used?
Jun 21, 2025 am 12:21 AM
InLaravel,policiesorganizeauthorizationlogicformodelactions.1.Policiesareclasseswithmethodslikeview,create,update,anddeletethatreturntrueorfalsebasedonuserpermissions.2.Toregisterapolicy,mapthemodeltoitspolicyinthe$policiesarrayofAuthServiceProvider.
How do I install Laravel on my operating system (Windows, macOS, Linux)?
Jun 19, 2025 am 12:31 AM
Yes,youcaninstallLaravelonanyoperatingsystembyfollowingthesesteps:1.InstallPHPandrequiredextensionslikembstring,openssl,andxmlusingtoolslikeXAMPPonWindows,HomebrewonmacOS,oraptonLinux;2.InstallComposer,usinganinstalleronWindowsorterminalcommandsonmac
What are controllers in Laravel, and what is their purpose?
Jun 20, 2025 am 12:31 AM
The main role of the controller in Laravel is to process HTTP requests and return responses to keep the code neat and maintainable. By concentrating the relevant request logic into a class, the controller makes the routing file simpler, such as putting user profile display, editing and deletion operations in different methods of UserController. The creation of a controller can be implemented through the Artisan command phpartisanmake:controllerUserController, while the resource controller is generated using the --resource option, covering methods for standard CRUD operations. Then you need to bind the controller in the route, such as Route::get('/user/{id
How do I customize the authentication views and logic in Laravel?
Jun 22, 2025 am 01:01 AM
Laravel allows custom authentication views and logic by overriding the default stub and controller. 1. To customize the authentication view, use the command phpartisanvendor:publish-tag=laravel-auth to copy the default Blade template to the resources/views/auth directory and modify it, such as adding the "Terms of Service" check box. 2. To modify the authentication logic, you need to adjust the methods in RegisterController, LoginController and ResetPasswordController, such as updating the validator() method to verify the added field, or rewriting r
How do I use Laravel's validation system to validate form data?
Jun 22, 2025 pm 04:09 PM
Laravelprovidesrobusttoolsforvalidatingformdata.1.Basicvalidationcanbedoneusingthevalidate()methodincontrollers,ensuringfieldsmeetcriterialikerequired,maxlength,oruniquevalues.2.Forcomplexscenarios,formrequestsencapsulatevalidationlogicintodedicatedc
How do I escape HTML output in a Blade template using {{{ ... }}}? (Note: rarely used, prefer {{ ... }})
Jun 23, 2025 pm 07:29 PM
InLaravelBladetemplates,use{{{...}}}todisplayrawHTML.Bladeescapescontentwithin{{...}}usinghtmlspecialchars()topreventXSSattacks.However,triplebracesbypassescaping,renderingHTMLas-is.Thisshouldbeusedsparinglyandonlywithfullytrusteddata.Acceptablecases
Selecting Specific Columns | Performance Optimization
Jun 27, 2025 pm 05:46 PM
Selectingonlyneededcolumnsimprovesperformancebyreducingresourceusage.1.Fetchingallcolumnsincreasesmemory,network,andprocessingoverhead.2.Unnecessarydataretrievalpreventseffectiveindexuse,raisesdiskI/O,andslowsqueryexecution.3.Tooptimize,identifyrequi
How do I mock dependencies in Laravel tests?
Jun 22, 2025 am 12:42 AM
TomockdependencieseffectivelyinLaravel,usedependencyinjectionforservices,shouldReceive()forfacades,andMockeryforcomplexcases.1.Forinjectedservices,use$this->instance()toreplacetherealclasswithamock.2.ForfacadeslikeMailorCache,useshouldReceive()tod
