0
Kayıt Ol

Laravel Sanctum Çerezleri Çalışmıyor

7

136

  • 02-11-2023, 21:04:55
    #1
    whizgodz
    whizgodz
    Angular ile Laravel Çerezlerini Almak için (XSRF-TOKEN, laravel_session) Axios ile http://localhost/sanctum/csrf-cookie Adresine GET gönderiyorum, çerezleri alabiliyorum Aldığım Çerezler ile POST gönderdiğimde 419 Page Expired Hatası alıyorum İstek Başlıklarını Kontrol ettim çerezler ile birlikte istek yapılıyor, fakat 1 hafta önce sorunsuz çalışıyordu 2 gündür nedense böyle bir hata aldım.

    Angular/index.component.ts:
    const Request = axios.create({
    baseURL:'http://localhost:8000',
    withCredentials: true
})
Request.get('/sanctum/csrf-cookie').then(() => {
        Request.post('/').then((e) => {
                console.log(e.data)
        })
})
    Laravel/.env:
    SESSION_DOMAIN=localhost
SANCTUM_STATEFUL_DOMAINS=localhost
APP_URL=http://localhost:8000
FRONTEND_URL=http://localhost:4200
    Laravel/cors.php
    'paths' => ['*'],
'allowed_methods' => ['*'],
'allowed_origins' => ['*'],
'allowed_origins_patterns' => [],
'allowed_headers' => ['*'],
'exposed_headers' => [],
'max_age' => 0,
'supports_credentials' => true,
  • 02-11-2023, 21:35:41
    #2
    oguzhane
    oguzhane
    Cache clear yapmayı denedin mi?
  • 02-11-2023, 21:38:26
    #3
    whizgodz
    whizgodz
    oguzhane adlı üyeden alıntı: mesajı görüntüle
    Cache clear yapmayı denedin mi?
    evet hemde defalarca son çare olarak yeni bir laravel uygulaması oluşturdum ondada denedim sonuç aynı 419 hatası
  • 02-11-2023, 21:41:11
    #4
    oguzhane
    oguzhane
    419 aldığın request ve response içeriklerini de paylaşır mısın
  • 02-11-2023, 21:48:49
    #5
    whizgodz
    whizgodz
    oguzhane adlı üyeden alıntı: mesajı görüntüle
    419 aldığın request ve response içeriklerini de paylaşır mısın
    Request:
    POST / HTTP/1.1
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Accept-Language: tr-TR,tr;q=0.9,en-US;q=0.8,en;q=0.7
Connection: keep-alive
Content-Length: 2
Content-Type: application/json
Cookie: SL_G_WPT_TO=tr; XSRF-TOKEN=eyJpdiI6Ik5kSjdhUWpWck5OeFdLa0poNXQ5L2c9PSIsInZhbHVlIjoicUQ1YkdnUDIyWWlRZTVxYXJqaEFRNTdySDF4bnE1YWhMZTYyQ1lzSWpCNTlkSm15b1JpNy9Ra3BFcDBGSE1zdWZ3c0RuS3ZRYWFNTXlyVmM4bGJrTzIwTzFqd3NxV1pPeUx3Qy8veGJoUVMrdVA2bmd0MmxTVTB2K25ZYWJaeTQiLCJtYWMiOiJhNTRhM2JjNGI3MGM5NDZkYmIzNDUzM2ViZTE1NzcxMmZlOGM0ZTJkZTVhODAyZjVmYjcwMmFiYzE3Y2Y4ZmMwIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5qOWppZVhwQ2s5NGNJRW5YamNBWXc9PSIsInZhbHVlIjoiQUxaSlg5Qll4UGVNQXVyT1NIUk9mR1FRL2xKclNEREpQMWI2YmZiaVhkVUZyQjBlZzRWdWtIdGFyb1JJL0o0UlE2ZUFzZGtqWjViMHJiWlpFTTh6ZFR1eFBWUml4RWszcUFDUXVpdTJ1ME5rUTgzOHBjMm5hZ3ZqQkhJMXY4TmkiLCJtYWMiOiIxZWM0MzVmODdmZDcyMmUwZmQ4NzY0Nzk0NDQyNjRlOGM1YjIwOTIzNDdjMGY1ZTI0M2VlNzkyNThkYzcwNWZhIiwidGFnIjoiIn0%3D
Host: http://localhost:8000
Origin: http://localhost:4200
Referer: http://localhost:4200/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 OPR/102.0.0.0
sec-ch-ua: "Chromium";v="116", "Not)A;Brand";v="24", "Opera GX";v="102"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
    Response:
    HTTP/1.1 419 unknown status
Date: Thu, 02 Nov 2023 18:43:31 GMT
Server: Apache/2.4.33 (Win64) OpenSSL/1.0.2u mod_fcgid/2.3.9 PHP/8.1.0
X-Powered-By: PHP/8.1.0
Cache-Control: no-cache, private
Access-Control-Allow-Origin: http://localhost:4200
Vary: Origin
Access-Control-Allow-Credentials: true
Set-Cookie: laravel_session=eyJpdiI6ImJMUmk5YUoxVGNZdDRqNGtvSjdQQ3c9PSIsInZhbHVlIjoiKzRYR3RMcWpoclJRTStaVk9aRFl1cHZhWXkvRGNCWGZ6MWR1clVTUEFBQnZxdVB6ZGxNREd0Z05uRXZCWEZCRGp0cWkwdjFFakovUit3RUM1bTEzd2xvRVRqOUp5RkhPT2ZVdzU4WXAzRUZxY1BBRUw0K2o3dVBmakpON09UT24iLCJtYWMiOiJiNjAyNTQyOWZiZjZkMzBhZTQ0NzBjYTU2YThkNjZiNDAwYTE0NzkzZmEwNDRmODJhY2IwYzk0MzAyZTFiN2EzIiwidGFnIjoiIn0%3D; expires=Thu, 02 Nov 2023 20:43:31 GMT; Max-Age=7200; path=/; domain=localhost; httponly; samesite=lax
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json


Response İçeriği:


"message": "CSRF token mismatch.",
"exception": "Symfony\\Component\\HttpKernel\\Exception\\HttpException",
"file": "E:\\ROOT\\vendor\\laravel\\framework\\src\\Illuminate\\Foundation\\Exceptions\\Handler.php",
"line": 492
  • 02-11-2023, 21:56:07
    #6
    oguzhane
    oguzhane
    whizgodz adlı üyeden alıntı: mesajı görüntüle
    Request:
    POST / HTTP/1.1
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Accept-Language: tr-TR,tr;q=0.9,en-US;q=0.8,en;q=0.7
Connection: keep-alive
Content-Length: 2
Content-Type: application/json
Cookie: SL_G_WPT_TO=tr; XSRF-TOKEN=eyJpdiI6Ik5kSjdhUWpWck5OeFdLa0poNXQ5L2c9PSIsInZhbHVlIjoicUQ1YkdnUDIyWWlRZTVxYXJqaEFRNTdySDF4bnE1YWhMZTYyQ1lzSWpCNTlkSm15b1JpNy9Ra3BFcDBGSE1zdWZ3c0RuS3ZRYWFNTXlyVmM4bGJrTzIwTzFqd3NxV1pPeUx3Qy8veGJoUVMrdVA2bmd0MmxTVTB2K25ZYWJaeTQiLCJtYWMiOiJhNTRhM2JjNGI3MGM5NDZkYmIzNDUzM2ViZTE1NzcxMmZlOGM0ZTJkZTVhODAyZjVmYjcwMmFiYzE3Y2Y4ZmMwIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5qOWppZVhwQ2s5NGNJRW5YamNBWXc9PSIsInZhbHVlIjoiQUxaSlg5Qll4UGVNQXVyT1NIUk9mR1FRL2xKclNEREpQMWI2YmZiaVhkVUZyQjBlZzRWdWtIdGFyb1JJL0o0UlE2ZUFzZGtqWjViMHJiWlpFTTh6ZFR1eFBWUml4RWszcUFDUXVpdTJ1ME5rUTgzOHBjMm5hZ3ZqQkhJMXY4TmkiLCJtYWMiOiIxZWM0MzVmODdmZDcyMmUwZmQ4NzY0Nzk0NDQyNjRlOGM1YjIwOTIzNDdjMGY1ZTI0M2VlNzkyNThkYzcwNWZhIiwidGFnIjoiIn0%3D
Host: http://localhost:8000
Origin: http://localhost:4200
Referer: http://localhost:4200/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 OPR/102.0.0.0
sec-ch-ua: "Chromium";v="116", "Not)A;Brand";v="24", "Opera GX";v="102"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
    Response:
    HTTP/1.1 419 unknown status
Date: Thu, 02 Nov 2023 18:43:31 GMT
Server: Apache/2.4.33 (Win64) OpenSSL/1.0.2u mod_fcgid/2.3.9 PHP/8.1.0
X-Powered-By: PHP/8.1.0
Cache-Control: no-cache, private
Access-Control-Allow-Origin: http://localhost:4200
Vary: Origin
Access-Control-Allow-Credentials: true
Set-Cookie: laravel_session=eyJpdiI6ImJMUmk5YUoxVGNZdDRqNGtvSjdQQ3c9PSIsInZhbHVlIjoiKzRYR3RMcWpoclJRTStaVk9aRFl1cHZhWXkvRGNCWGZ6MWR1clVTUEFBQnZxdVB6ZGxNREd0Z05uRXZCWEZCRGp0cWkwdjFFakovUit3RUM1bTEzd2xvRVRqOUp5RkhPT2ZVdzU4WXAzRUZxY1BBRUw0K2o3dVBmakpON09UT24iLCJtYWMiOiJiNjAyNTQyOWZiZjZkMzBhZTQ0NzBjYTU2YThkNjZiNDAwYTE0NzkzZmEwNDRmODJhY2IwYzk0MzAyZTFiN2EzIiwidGFnIjoiIn0%3D; expires=Thu, 02 Nov 2023 20:43:31 GMT; Max-Age=7200; path=/; domain=localhost; httponly; samesite=lax
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json


Response İçeriği:


"message": "CSRF token mismatch.",
"exception": "Symfony\\Component\\HttpKernel\\Exception\\HttpException",
"file": "E:\\ROOT\\vendor\\laravel\\framework\\src\\Illuminate\\Foundation\\Exceptions\\Handler.php",
"line": 492
    Requestteki headeri X-XSRF-TOKEN olacak şekilde değişip bir de incognito mod ile dener misin (postman ile denemiyorsan)
  • 02-11-2023, 22:01:30
    #7
    oguzhane
    oguzhane
    Son olarak olmazsa şuradaki önergelere göz atmanı öneririm: https://copyprogramming.com/howto/ph...ter-using-csrf
  • 02-11-2023, 22:38:32
    #8
    whizgodz
    whizgodz
    oguzhane adlı üyeden alıntı: mesajı görüntüle
    Son olarak olmazsa şuradaki önergelere göz atmanı öneririm: https://copyprogramming.com/howto/ph...ter-using-csrf
    Önerdiklerinizin ikiniside denedim sonuç aynı, galiba Laraveli bırakıp CI4'e geçeceğim ilgilendiğin için teşekkür ederim