I build a spa with laravel-sanctum But I have problem when authenticate. Because authenticate via laravel-sanctum using CSRF (not token) needs to declare SANCTUM_STATEFUL_DOMAINS first. But postman or insomnia send request on a random port. So I can't authenticate
Can anyone give me a hint or something?
$domain = $request->headers->get('referer') ?: $request->headers->get('origin');
This is a snippet in
\Laravel\Sanctum\Http\Middleware\EnsureFrontendRequestsAreStateful::class
=> NEED set header referer or origin to a given domain and declare this domain to SANCTUM_STATEFUL_DOMAINS config.