firefly-iii/app/Http/Middleware/VerifyCsrfToken.php

<?php
/**
 * VerifyCsrfToken.php
 * Copyright (C) 2016 thegrumpydictator@gmail.com
 *
 * This software may be modified and distributed under the terms of the
 * Creative Commons Attribution-ShareAlike 4.0 International License.
 *
 * See the LICENSE file for details.
 */
declare(strict_types=1);

namespace FireflyIII\Http\Middleware;

use Carbon\Carbon;
use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as BaseVerifier;
use Symfony\Component\HttpFoundation\Cookie;

/**
 * Class VerifyCsrfToken
 *
 * @package FireflyIII\Http\Middleware
 */
class VerifyCsrfToken extends BaseVerifier
{
    /**
     * The URIs that should be excluded from CSRF verification.
     *
     * @var array
     */
    protected $except
        = [
            //
        ];

    /**
     * Add the CSRF token to the response cookies.
     *
     * @param  \Illuminate\Http\Request                   $request
     * @param  \Symfony\Component\HttpFoundation\Response $response
     *
     * @return \Symfony\Component\HttpFoundation\Response
     */
    protected function addCookieToResponse($request, $response)
    {
        $config = config('session');

        $response->headers->setCookie(
            new Cookie(
                'XSRF-TOKEN', $request->session()->token(), Carbon::now()->getTimestamp() + 60 * $config['lifetime'],
                $config['path'], $config['domain'], $config['secure'], true
            )
        );

        return $response;
    }
}
Update middleware after upgrade to Laravel 5.2 2016-01-08 16:00:57 +01:00			`<?php`
Copyright notices. [skip ci] Signed-off-by: James Cole <thegrumpydictator@gmail.com> 2016-05-20 12:41:23 +02:00			`/**`
			`* VerifyCsrfToken.php`
			`* Copyright (C) 2016 thegrumpydictator@gmail.com`
			`*`
Some code cleanup and copyright cleanup. [skip ci] 2016-10-05 06:52:15 +02:00			`* This software may be modified and distributed under the terms of the`
			`* Creative Commons Attribution-ShareAlike 4.0 International License.`
			`*`
			`* See the LICENSE file for details.`
Copyright notices. [skip ci] Signed-off-by: James Cole <thegrumpydictator@gmail.com> 2016-05-20 12:41:23 +02:00			`*/`
Apparently this is changed in PHPStorm’s formatting templates so there you go [skip ci]. 2017-04-09 07:44:22 +02:00			`declare(strict_types=1);`
More code for 5.3 2016-09-16 06:48:38 +02:00
Update middleware after upgrade to Laravel 5.2 2016-01-08 16:00:57 +01:00			`namespace FireflyIII\Http\Middleware;`
Fresh L5 installation. 2015-02-06 04:39:52 +01:00
Various code cleanup. 2017-02-17 06:42:36 +01:00			`use Carbon\Carbon;`
Fresh L5 installation. 2015-02-06 04:39:52 +01:00			`use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as BaseVerifier;`
Updated laravel, removed GitHub move announcement. 2017-01-04 09:28:49 +01:00			`use Symfony\Component\HttpFoundation\Cookie;`
Various code cleanup. 2017-02-17 06:42:36 +01:00
Did some code cleanup. Comments and headers mostly. 2016-01-09 08:20:55 +01:00			`/**`
			`* Class VerifyCsrfToken`
			`*`
			`* @package FireflyIII\Http\Middleware`
			`*/`
Code cleanup. 2015-02-11 07:35:10 +01:00			`class VerifyCsrfToken extends BaseVerifier`
			`{`
			`/**`
Update middleware after upgrade to Laravel 5.2 2016-01-08 16:00:57 +01:00			`* The URIs that should be excluded from CSRF verification.`
Code cleanup. 2015-02-11 07:35:10 +01:00			`*`
Update middleware after upgrade to Laravel 5.2 2016-01-08 16:00:57 +01:00			`* @var array`
Code cleanup. 2015-02-11 07:35:10 +01:00			`*/`
Update middleware after upgrade to Laravel 5.2 2016-01-08 16:00:57 +01:00			`protected $except`
			`= [`
			`//`
			`];`
Updated laravel, removed GitHub move announcement. 2017-01-04 09:28:49 +01:00
			`/**`
			`* Add the CSRF token to the response cookies.`
			`*`
Various code cleanup. 2017-02-17 06:42:36 +01:00			`* @param \Illuminate\Http\Request $request`
			`* @param \Symfony\Component\HttpFoundation\Response $response`
			`*`
Updated laravel, removed GitHub move announcement. 2017-01-04 09:28:49 +01:00			`* @return \Symfony\Component\HttpFoundation\Response`
			`*/`
			`protected function addCookieToResponse($request, $response)`
			`{`
			`$config = config('session');`

			`$response->headers->setCookie(`
			`new Cookie(`
			`'XSRF-TOKEN', $request->session()->token(), Carbon::now()->getTimestamp() + 60 * $config['lifetime'],`
			`$config['path'], $config['domain'], $config['secure'], true`
			`)`
			`);`

			`return $response;`
			`}`
Did some code cleanup. Comments and headers mostly. 2016-01-09 08:20:55 +01:00			`}`