mirror of
				https://github.com/pelican-dev/panel.git
				synced 2025-10-26 13:56:51 +01:00 
			
		
		
		
	
		
			
				
	
	
		
			27 lines
		
	
	
		
			826 B
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			27 lines
		
	
	
		
			826 B
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| 
 | |
| namespace App\Http\Middleware;
 | |
| 
 | |
| use Laravel\Sanctum\Http\Middleware\EnsureFrontendRequestsAreStateful;
 | |
| 
 | |
| class EnsureStatefulRequests extends EnsureFrontendRequestsAreStateful
 | |
| {
 | |
|     /**
 | |
|      * Determines if a request is stateful or not. This is determined using the default
 | |
|      * Sanctum "fromFrontend" helper method. However, we also check if the request includes
 | |
|      * a cookie value for the Panel session. If so, we assume this is a stateful
 | |
|      * request.
 | |
|      *
 | |
|      * We don't want to support API usage using the cookies, except for requests stemming
 | |
|      * from the front-end we control.
 | |
|      */
 | |
|     public static function fromFrontend($request): bool
 | |
|     {
 | |
|         if (parent::fromFrontend($request)) {
 | |
|             return true;
 | |
|         }
 | |
| 
 | |
|         return $request->hasCookie(config('session.cookie'));
 | |
|     }
 | |
| }
 | 
