Adding csrf

digitaldreams · digitaldreams · commit cec48021466a · 2025-04-20T15:10:14.000+06:00
diff --git a/.gitignore b/.gitignore
@@ -32,4 +32,4 @@ composer.lock
 /phpunit.xml
 .phpunit.result.cache
 ###< phpunit/phpunit ###
-app_app_files.txt
+all_app_files.txt
diff --git a/config/packages/csrf.yaml b/config/packages/csrf.yaml
@@ -0,0 +1,11 @@
+# Enable stateless CSRF protection for forms and logins/logouts
+framework:
+    form:
+        csrf_protection:
+            token_id: submit
+
+    csrf_protection:
+        stateless_token_ids:
+            - submit
+            - authenticate
+            - logout
