I have an application which works with Laravel and VueJs. Also i have a VK-bot. Bot and Vue use the same API-routes.
For bot i use oauth access token with next headers
Accept : application/json, Authorization: Bearer my_token_code
bot works well.
For VueJs i use X-CSRF-TOKEN. When i try send requests from vue i get an error
Unauthenticated.
my routes
Route::middleware('auth:api')->group(function(){
Route::get('/prepare/', 'CompgenApiController@prepareDefault');
Route::post('/replace/', 'CompgenApiController@replaceImage');
Route::get('/replaceall/', 'CompgenApiController@replaceAllImages');
Route::get('/collage/', 'CompgenApiController@collage'); //@todo replace to POST
Route::get('/generate/', 'CompgenApiController@generate');
Route::post('/upload/', 'CompgenApiController@userUpload');
Route::post('/reupload/', 'CompgenApiController@moderationReupload');
Route::post('/feedback/', 'CompgenApiController@feedback');
});
my app/Http/Kernel.php
protected $middlewareGroups = [
'web' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
// \Illuminate\Session\Middleware\AuthenticateSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\VerifyCsrfToken::class,
\Illuminate\Routing\Middleware\SubstituteBindings::class,
\Laravel\Passport\Http\Middleware\CreateFreshApiToken::class
],
'api' => [
'throttle:1000,1',
'bindings',
],
];
my app.js
window.axios.defaults.headers.common = {
'X-Requested-With': 'XMLHttpRequest',
'X-CSRF-TOKEN' : $('meta[name="csrf-token"]').attr('content')
};
via Chebli Mohamed
Aucun commentaire:
Enregistrer un commentaire