Level 73
And what do you use a SESSION_DRIVER is it a cookie maybe?
Mar 27, 2022
7
Level 1
Session id changing after payment gateway post response
I'm trying to do payment integration via API (not iframe). After submitting the form to gateway, response has no csrf (obviously), my page is excluded in Middleware/VerifyCsrfToken.php too.
My kernel file
\App\Http\Middleware\TrustProxies::class,
\App\Http\Middleware\CheckForMaintenanceMode::class,
\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
\App\Http\Middleware\TrimStrings::class,
\App\Http\Middleware\Currency::class,
\Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
My response page's middleware are web and auth
After the response, it's sending back me to the login page again.
I've googled it already, but I think I'm missing something. I've started chasing my own tail so here I am.
-- Forgot to mention, Laravel 5.8
Any help appreciated, thank you
Level 1
@Nakov I'm using file for SESSION_DRIVER value
Level 51
Change the same_site to be null in config/session.php
return [
...
...
'same_site' => null,
...
...
];
https://stackoverflow.com/a/64963664
Also take a look at: https://stackoverflow.com/a/71409216
1 like
Level 1
@MohamedTammam Tried this one too
Level 51
@ahmetertem What payment API are you using?
Level 1
@MohamedTammam I'm not using an API. Wrote my own. The provider is PayTR and there is no API for non-iframe version
Level 1
@MohamedTammam another answer in that post helped me https://stackoverflow.com/a/71407682/712117.
I saw this one but in session.php written Supported: "lax", "strict", so I thought it's supported in Laravel 8...
Thanks for giving hope and trying to help
Regards
1 like
Please or to participate in this conversation.