Exclude booking pages from CSRF protection

2024-11-10 01:52:22 +03:00 · 2022-05-20 18:21:44 +02:00 · 2022-05-20 18:21:44 +02:00 · 14305d08cc
commit 14305d08cc
parent b253a002a8
1 changed files with 4 additions and 1 deletions
--- a/application/config/config.php
+++ b/application/config/config.php
@ -387,7 +387,10 @@ $config['csrf_protection'] = TRUE;
 $config['csrf_token_name'] = 'csrf_token';
 $config['csrf_cookie_name'] = 'csrf_cookie';
 $config['csrf_expire'] = 7200;
-$config['csrf_exclude_uris'] = ['api/v1/.*'];
+$config['csrf_exclude_uris'] = [
+    'api/v1/.*',
+    'booking/.*'
+];

 /*
 |--------------------------------------------------------------------------