stackoom
  简体   繁体   中英

Laravel Sanctum Nuxt User Registration Error

 原文  2021-07-22 05:32:21       laravel/ nuxt.js/ laravel-sanctum

Question

I have a Laravel API and I implemented authentication with Laravel Sanctum and I am using homestead . I am trying to connect my Nuxt SSR frontend. Currently, I am experiencing an issue that I don't seem to understand and I have searched but can see any similar issue anyway.

The issue is that I can't even register a user from my Nuxt application. I get CSRF token mismatch error when I make a request to the register route.

  • API domain: api.myapp.test
  • Frontend domain: myapp.test:3000

Sending a POST request to http://api.myapp.test/v1/register return a CSRF token mismatch error.

Is there something I am not getting right?

Below are my Laravel configs:

cors.php

return [
    'paths' => ['v1/*', 'sanctum/csrf-cookie'],

    'allowed_methods' => ['*'],

    'allowed_origins' => ['*'],

    'allowed_origins_patterns' => [],

    'allowed_headers' => ['*'],

    'exposed_headers' => [],

    'max_age' => 0,

    'supports_credentials' => true,

];

session.php

[
   'domain' => '.myapp.test',
]

sanctum.php

return [
    'stateful' => [
        'myapp.test:3000', 'api.myapp.test'
    ],

];

I am using nuxt/axios in my frontend. nuxt.config.js

{
// Even if I remove the credentials property, is still does not work
  axios: {
    credentials: true
  },
}

I am really confused because I don't get the error when I make the same request from Postman .

2 answers

solution1
 0  2021-07-22 06:15:16

I propose you to use @nuxt/auth-module it has build in strategy for Laravel Sanctum. And as mentioned in docs:

NOTE: It is highly recommended to use proxy to avoid CORS and same-site policy issues:

{
  axios: {
    proxy: true,
    credentials: true
  },
  proxy: {
    '/laravel': {
      target: 'https://laravel-auth.nuxtjs.app',
      pathRewrite: { '^/laravel': '/' }
    }
  },
  auth: {
    strategies: {
      'laravelSanctum': {
        provider: 'laravel/sanctum',
        url: '<laravel url>'
      }
    }
  }
}

Then after manual registration through your controller, you can login user immediately using:

this.$auth.loginWith('laravelSanctum', {
  data: {
    email: '',
    password: ''
  }
})

solution2
 0  2021-07-22 12:24:06

It isn't clear from your question wether or not you're calling the necessary '/sanctum/csrf-cookie' endpoint before you're attempting to call your registration end point. If you're not, great news— the fix is really simple! Just send a GET request to the csrf cookie end point before attempting the others, and you should find your CSRF errors resolve.

Docs here:

https://laravel.com/docs/8.x/sanctum#csrf-protection

EDIT: Postman works, because CORS is a browser based protocol. Postman isn't a browser, and doesn't care at all if the server responds with or without the otherwise appropriate CORS headers.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Nuxt3 + Laravel sanctum Nuxt-Laravel-Sanctum User unauthenticated after login OR Error: "Route [login] not defined" Nuxt-Laravel-Sanctum CSRF token mismatch 419 error error getting a user existing in laravel sanctum Laravel Sanctum and Nuxt Js returns Unauthenticated Nuxt with laravel sanctum recieve "Unauthenticated" message Laravel sanctum & nuxt/auth-next request to auto fetch user is not sent anymore Nuxt project throws CSRF token mismatch 419 error while trying to login users through Laravel Sanctum Laravel sanctum getting wrong user Getting user data with Laravel Sanctum
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM