From e5a6850e6a4e5bd0e35936cfb5ea0a41e126b2ee Mon Sep 17 00:00:00 2001
From: Jonathan Shull <58316242+aMytho@users.noreply.github.com>
Date: Fri, 27 Dec 2024 23:43:48 +0000
Subject: [PATCH 1/3] Add note about CSRF token encoding
---
sanctum.md | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/sanctum.md b/sanctum.md
index ee09eaba6d..b1ee6d30ea 100644
--- a/sanctum.md
+++ b/sanctum.md
@@ -306,7 +306,7 @@ axios.get('/sanctum/csrf-cookie').then(response => {
});
```
-During this request, Laravel will set an `XSRF-TOKEN` cookie containing the current CSRF token. This token should then be passed in an `X-XSRF-TOKEN` header on subsequent requests, which some HTTP client libraries like Axios and the Angular HttpClient will do automatically for you. If your JavaScript HTTP library does not set the value for you, you will need to manually set the `X-XSRF-TOKEN` header to match the value of the `XSRF-TOKEN` cookie that is set by this route.
+During this request, Laravel will set an `XSRF-TOKEN` cookie containing the current CSRF token in an URI encoded format. This token should then be decoded and passed in an `X-XSRF-TOKEN` header on subsequent requests, which some HTTP client libraries like Axios and the Angular HttpClient will do automatically for you. If your JavaScript HTTP library does not set the value for you, you will need to manually set the `X-XSRF-TOKEN` header to match the decoded value of the `XSRF-TOKEN` cookie that is set by this route.
#### Logging In
From b7bf7060ddc85bb73688fe998b1bc275da73eca5 Mon Sep 17 00:00:00 2001
From: Taylor Otwell
Date: Mon, 30 Dec 2024 10:06:54 -0600
Subject: [PATCH 2/3] Update sanctum.md
---
sanctum.md | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/sanctum.md b/sanctum.md
index b1ee6d30ea..ee0ab74f93 100644
--- a/sanctum.md
+++ b/sanctum.md
@@ -306,7 +306,7 @@ axios.get('/sanctum/csrf-cookie').then(response => {
});
```
-During this request, Laravel will set an `XSRF-TOKEN` cookie containing the current CSRF token in an URI encoded format. This token should then be decoded and passed in an `X-XSRF-TOKEN` header on subsequent requests, which some HTTP client libraries like Axios and the Angular HttpClient will do automatically for you. If your JavaScript HTTP library does not set the value for you, you will need to manually set the `X-XSRF-TOKEN` header to match the decoded value of the `XSRF-TOKEN` cookie that is set by this route.
+During this request, Laravel will set an `XSRF-TOKEN` cookie containing the current CSRF token. This token should then be URL decoded and passed in an `X-XSRF-TOKEN` header on subsequent requests, which some HTTP client libraries like Axios and the Angular HttpClient will do automatically for you. If your JavaScript HTTP library does not set the value for you, you will need to manually set the `X-XSRF-TOKEN` header to match the decoded value of the `XSRF-TOKEN` cookie that is set by this route.
#### Logging In
From 9035a6c0cb0de09a90ea11458747b161fcde0b8f Mon Sep 17 00:00:00 2001
From: Taylor Otwell
Date: Mon, 30 Dec 2024 10:07:18 -0600
Subject: [PATCH 3/3] Update sanctum.md
---
sanctum.md | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/sanctum.md b/sanctum.md
index ee0ab74f93..06e1f17f5f 100644
--- a/sanctum.md
+++ b/sanctum.md
@@ -306,7 +306,7 @@ axios.get('/sanctum/csrf-cookie').then(response => {
});
```
-During this request, Laravel will set an `XSRF-TOKEN` cookie containing the current CSRF token. This token should then be URL decoded and passed in an `X-XSRF-TOKEN` header on subsequent requests, which some HTTP client libraries like Axios and the Angular HttpClient will do automatically for you. If your JavaScript HTTP library does not set the value for you, you will need to manually set the `X-XSRF-TOKEN` header to match the decoded value of the `XSRF-TOKEN` cookie that is set by this route.
+During this request, Laravel will set an `XSRF-TOKEN` cookie containing the current CSRF token. This token should then be URL decoded and passed in an `X-XSRF-TOKEN` header on subsequent requests, which some HTTP client libraries like Axios and the Angular HttpClient will do automatically for you. If your JavaScript HTTP library does not set the value for you, you will need to manually set the `X-XSRF-TOKEN` header to match the URL decoded value of the `XSRF-TOKEN` cookie that is set by this route.
#### Logging In