Level 65
Is the CSRF token changing on each refresh?
Have you got 'secure' => true but you're on HTTP?
Sep 11, 2017
6
Level 1
TokenMismatchException and New Sessions every session for WHM Server
Hey, I've been trying to solve this problem for the past few days with no luck. Basically, I have a site that is fine in Laravel Homestead, but when the site was updated to Laravel 5.4 and put on a server, there's been issues with TokenMismatchException.
I've made sure the APP_URL and SESSION_DOMAIN was valid. The secure setting is set to false (regular HTTP server), I made sure everything was in the web route. I've also added CSRF tokens blocks to the header and javascript in the main layout template file.
Any ideas what else I can do? I checked other questions and pages about this issue to no luck.
Thanks.
Level 1
The CSRF token is changing on each refresh.
secure is set to false and it's on HTTP.
Level 65
There's loads of threads about this. It's always a small thing which I can't remember! Is your session storage writable?
Level 1
I temporarily set the storage/framework/sessions folder to 777. The user and group settings check out as well.
I reviewed the other threads and tried out their ideas. I'm also going to check my WHM configuration. I normally don't use WHM/CPanel, but a client did.
Level 1
Got it resolved. The issue was the site was set to APP_DEBUG=true and APP_STATUS=production. I think the debug mode was causing issues or the Laravel DebugBar/IDE-Helper with the site.
Thanks!
Level 65
That shouldn't be messing with it but glad you got it sorted.
Please or to participate in this conversation.