VerifyCsrfToken.php 第 67 行中的 TokenMismatchException - 如何禁用中间件并将其设置为默认值
TokenMismatchException in VerifyCsrfToken.php line 67 - How to disable middleware and set that to be default
我正在通过视频学习Laravel。我制作了一个只有一个文本框和一个提交按钮的视图。单击提交按钮后,VerifyCsrfToken.php 第 67 行出现 TokenMismatchException 错误。
TokenMismatchException in VerifyCsrfToken.php line 67:
C:\xampp\htdocs\laravel_tut\vendor\laravel\framework\src\Illuminate\Foundation\Http\Middleware\VerifyCsrfToken.php line 67:
in VerifyCsrfToken.php line 67
at VerifyCsrfToken->handle(object(Request), object(Closure))
at call_user_func_array(array(object(VerifyCsrfToken), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in ShareErrorsFromSession.php line 49
at ShareErrorsFromSession->handle(object(Request), object(Closure))
at call_user_func_array(array(object(ShareErrorsFromSession), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in StartSession.php line 62
at StartSession->handle(object(Request), object(Closure))
at call_user_func_array(array(object(StartSession), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in AddQueuedCookiesToResponse.php line 37
at AddQueuedCookiesToResponse->handle(object(Request), object(Closure))
at call_user_func_array(array(object(AddQueuedCookiesToResponse), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in EncryptCookies.php line 59
at EncryptCookies->handle(object(Request), object(Closure))
at call_user_func_array(array(object(EncryptCookies), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 103
at Pipeline->then(object(Closure)) in Router.php line 726
at Router->runRouteWithinStack(object(Route), object(Request)) in Router.php line 699
at Router->dispatchToRoute(object(Request)) in Router.php line 675
at Router->dispatch(object(Request)) in Kernel.php line 246
at Kernel->Illuminate\Foundation\Http\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 52
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in CheckForMaintenanceMode.php line 44
at CheckForMaintenanceMode->handle(object(Request), object(Closure))
at call_user_func_array(array(object(CheckForMaintenanceMode), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 103
at Pipeline->then(object(Closure)) in Kernel.php line 132
at Kernel->sendRequestThroughRouter(object(Request)) in Kernel.php line 99
at Kernel->handle(object(Request)) in index.php line 54
我有 PostsController:
//PostsController
<?php
namespace App\Http\Controllers;
use Illuminate\Http\Request;
use App\Http\Requests;
class PostsController extends Controller
{
...
public function create()
{
//
return view('posts.create');
}
public function store(Request $request)
{
//
return $request->all();
}
...
}
routes.php:
Route::resource('/posts', 'PostsController');
Route::group(['middleware'=>['web']],function(){
});
create.blade.php:
@extends('layouts.app')
@section('content')
<form method="post" action="/posts">
<input type="text" name="title" placeholder="Enter title">
<input type="submit" name="submit">
</form>
我用谷歌搜索,大多数解决方案都建议添加:
< meta name="csrf-token" content="{{ csrf_token() }}" />
但是我没有看到导师添加这行。我注意到在他的 route:list 中,他的中间件列的值是空的,而我的是 'web'
$ php artisan route:list
+--------+-----------+--------------------+---------------+----------------------------------------------+------------+
| Domain | Method | URI | Name | Action | Middleware |
+--------+-----------+--------------------+---------------+----------------------------------------------+------------+
| | GET|HEAD | insert | | Closure | web |
| | POST | posts | posts.store | App\Http\Controllers\PostsController@store | web |
| | GET|HEAD | posts | posts.index | App\Http\Controllers\PostsController@index | web |
| | GET|HEAD | posts/create | posts.create | App\Http\Controllers\PostsController@create | web |
| | DELETE | posts/{posts} | posts.destroy | App\Http\Controllers\PostsController@destroy | web |
| | PUT|PATCH | posts/{posts} | posts.update | App\Http\Controllers\PostsController@update | web |
| | GET|HEAD | posts/{posts} | posts.show | App\Http\Controllers\PostsController@show | web |
| | GET|HEAD | posts/{posts}/edit | posts.edit | App\Http\Controllers\PostsController@edit | web |
+--------+-----------+--------------------+---------------+----------------------------------------------+------------+
我假设如果我可以禁用这个中间件,问题就会解决。但是,我也没有看到导师在他的任何项目中执行禁用步骤,所以我认为他默认设置了它,因此在任何项目中始终禁用中间件。我在想解决此 VerifyCsrfToken 错误的正确方法吗?如果是这样,我如何禁用中间件并将其设置为其他项目的默认值?我正在使用 Laravel 5.2.39 和 NetBeans IDE.
这是导师的route:list
谢天谢地,这很简单。
使用 jQuery 和 Meta 标记,您可以确保所有表单始终获得正确的标记:
$('form').each(function(i, form){
var $form = $(form);
if (! $form.find('input[name="_token"]').length) {
$('form').prepend('<input type="hidden" name="_token" value="'+ $('meta[name="csrf-token"]').prop('content') +'"/>');
}
});
或者您可以通过以下 2 种方式中的一种手动完成,您都可以在下面看到:
<form method="post" action="/posts">
<!-- pick one of these 2 -->
{!! csrf_field() !!}
<input type="hidden" name="_token" value="{{ csrf_token() }}"/>
<input type="text" name="title" placeholder="Enter title">
<input type="submit" name="submit">
</form>
如果你想为关闭 Route::group(['middleware'=>['web']] 的路由禁用 "web" 中间件,你可以这样做:
文件:app/Providers/RouteServiceProvider.php
删除这个:'middleware' => 'web',
您必须在表单中添加 CSRF 保护字段:
// Blade Template Syntax
{{ csrf_field() }}
这里有更多详细信息:
https://laravel.com/docs/5.2/routing#csrf-protection
我正在通过视频学习Laravel。我制作了一个只有一个文本框和一个提交按钮的视图。单击提交按钮后,VerifyCsrfToken.php 第 67 行出现 TokenMismatchException 错误。
TokenMismatchException in VerifyCsrfToken.php line 67:
C:\xampp\htdocs\laravel_tut\vendor\laravel\framework\src\Illuminate\Foundation\Http\Middleware\VerifyCsrfToken.php line 67:
in VerifyCsrfToken.php line 67
at VerifyCsrfToken->handle(object(Request), object(Closure))
at call_user_func_array(array(object(VerifyCsrfToken), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in ShareErrorsFromSession.php line 49
at ShareErrorsFromSession->handle(object(Request), object(Closure))
at call_user_func_array(array(object(ShareErrorsFromSession), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in StartSession.php line 62
at StartSession->handle(object(Request), object(Closure))
at call_user_func_array(array(object(StartSession), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in AddQueuedCookiesToResponse.php line 37
at AddQueuedCookiesToResponse->handle(object(Request), object(Closure))
at call_user_func_array(array(object(AddQueuedCookiesToResponse), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in EncryptCookies.php line 59
at EncryptCookies->handle(object(Request), object(Closure))
at call_user_func_array(array(object(EncryptCookies), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 103
at Pipeline->then(object(Closure)) in Router.php line 726
at Router->runRouteWithinStack(object(Route), object(Request)) in Router.php line 699
at Router->dispatchToRoute(object(Request)) in Router.php line 675
at Router->dispatch(object(Request)) in Kernel.php line 246
at Kernel->Illuminate\Foundation\Http\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 52
at Pipeline->Illuminate\Routing\{closure}(object(Request)) in CheckForMaintenanceMode.php line 44
at CheckForMaintenanceMode->handle(object(Request), object(Closure))
at call_user_func_array(array(object(CheckForMaintenanceMode), 'handle'), array(object(Request), object(Closure))) in Pipeline.php line 136
at Pipeline->Illuminate\Pipeline\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 32
at Pipeline->Illuminate\Routing\{closure}(object(Request))
at call_user_func(object(Closure), object(Request)) in Pipeline.php line 103
at Pipeline->then(object(Closure)) in Kernel.php line 132
at Kernel->sendRequestThroughRouter(object(Request)) in Kernel.php line 99
at Kernel->handle(object(Request)) in index.php line 54
我有 PostsController:
//PostsController
<?php
namespace App\Http\Controllers;
use Illuminate\Http\Request;
use App\Http\Requests;
class PostsController extends Controller
{
...
public function create()
{
//
return view('posts.create');
}
public function store(Request $request)
{
//
return $request->all();
}
...
}
routes.php:
Route::resource('/posts', 'PostsController');
Route::group(['middleware'=>['web']],function(){
});
create.blade.php:
@extends('layouts.app')
@section('content')
<form method="post" action="/posts">
<input type="text" name="title" placeholder="Enter title">
<input type="submit" name="submit">
</form>
我用谷歌搜索,大多数解决方案都建议添加:
< meta name="csrf-token" content="{{ csrf_token() }}" />
但是我没有看到导师添加这行。我注意到在他的 route:list 中,他的中间件列的值是空的,而我的是 'web'
$ php artisan route:list
+--------+-----------+--------------------+---------------+----------------------------------------------+------------+
| Domain | Method | URI | Name | Action | Middleware |
+--------+-----------+--------------------+---------------+----------------------------------------------+------------+
| | GET|HEAD | insert | | Closure | web |
| | POST | posts | posts.store | App\Http\Controllers\PostsController@store | web |
| | GET|HEAD | posts | posts.index | App\Http\Controllers\PostsController@index | web |
| | GET|HEAD | posts/create | posts.create | App\Http\Controllers\PostsController@create | web |
| | DELETE | posts/{posts} | posts.destroy | App\Http\Controllers\PostsController@destroy | web |
| | PUT|PATCH | posts/{posts} | posts.update | App\Http\Controllers\PostsController@update | web |
| | GET|HEAD | posts/{posts} | posts.show | App\Http\Controllers\PostsController@show | web |
| | GET|HEAD | posts/{posts}/edit | posts.edit | App\Http\Controllers\PostsController@edit | web |
+--------+-----------+--------------------+---------------+----------------------------------------------+------------+
我假设如果我可以禁用这个中间件,问题就会解决。但是,我也没有看到导师在他的任何项目中执行禁用步骤,所以我认为他默认设置了它,因此在任何项目中始终禁用中间件。我在想解决此 VerifyCsrfToken 错误的正确方法吗?如果是这样,我如何禁用中间件并将其设置为其他项目的默认值?我正在使用 Laravel 5.2.39 和 NetBeans IDE.
这是导师的route:list
谢天谢地,这很简单。
使用 jQuery 和 Meta 标记,您可以确保所有表单始终获得正确的标记:
$('form').each(function(i, form){
var $form = $(form);
if (! $form.find('input[name="_token"]').length) {
$('form').prepend('<input type="hidden" name="_token" value="'+ $('meta[name="csrf-token"]').prop('content') +'"/>');
}
});
或者您可以通过以下 2 种方式中的一种手动完成,您都可以在下面看到:
<form method="post" action="/posts">
<!-- pick one of these 2 -->
{!! csrf_field() !!}
<input type="hidden" name="_token" value="{{ csrf_token() }}"/>
<input type="text" name="title" placeholder="Enter title">
<input type="submit" name="submit">
</form>
如果你想为关闭 Route::group(['middleware'=>['web']] 的路由禁用 "web" 中间件,你可以这样做:
文件:app/Providers/RouteServiceProvider.php
删除这个:'middleware' => 'web',
您必须在表单中添加 CSRF 保护字段:
// Blade Template Syntax
{{ csrf_field() }}
这里有更多详细信息: https://laravel.com/docs/5.2/routing#csrf-protection