Level 102
That is how the browser works. You will need to implement some way to refresh the token yourself. So for instance when the tab is opened, you send an ajax request to the backend to get a new csrf token. Or reload the page.
Feb 7, 2023
3
Level 8
CSRF token mismatch after login.
Hello, I have this error message : CSRF token mismatch
this Error is produced if I :
- open two tabs A and B
- when the session is expired on both tabs and I logged-in on the tab B
- then I try to use Axios (post or get) on the tab A, it produces CSRF token mismatch
Any Idea please?
Level 8
@Sinnbeck Thanks
Is it possible to get the csrf without refreshing the page (only ajax )?
Level 102
@GodziLaravel Yeah. Doing an ajax request should send back a new csrf token in the header :) So as long as you use that and not some static one on the page. :)
You can read about it here: https://laravel.com/docs/9.x/csrf#csrf-x-xsrf-token
1 like
Please or to participate in this conversation.