Barry vd. Heuvel:
In this post we take a closer look at CSRF protection in Laravel. We compare the difference between the CSRF filter in Laravel 4 and the current VerifyCsrfToken middleware in Laravel 5.
Barry also covers the Timing safe comparison, checking the headers, and modifying the middleware.
It’s a great post to learn more about how Laravel handles CSRF.
Filed in: