fix(csrf-token): add leading dot to session domain cookie. (#224)

* fix(csrf-token): add leading dot to session domain cookie. * refactor: remove generate key, upgrade axios and keep session domain in null. * refactor: fix PSR-12 code styles for PHP 8.2 compatibility. --------- Co-authored-by: Darko Gjorgjijoski <5760249+gdarko@users.noreply.github.com>
2026-05-28 06:04:54 +00:00 · 2025-08-28 02:44:34 -05:00
parent bf0d98c69c
commit 8e96d3e972
13 changed files with 59 additions and 69 deletions
--- a/.env.example
+++ b/.env.example
@@ -4,7 +4,7 @@ APP_DEBUG=true
 APP_NAME="InvoiceShelf"
 APP_LOG_LEVEL=debug
 APP_TIMEZONE=UTC
-APP_URL=http://invoiceshelf.test
+APP_URL=

 APP_LOCALE=en
 APP_FALLBACK_LOCALE=en
@@ -49,7 +49,6 @@ PUSHER_APP_ID=
 PUSHER_KEY=
 PUSHER_SECRET=

-SANCTUM_STATEFUL_DOMAINS=invoiceshelf.test
 TRUSTED_PROXIES="*"

 CRON_JOB_AUTH_TOKEN=""