Hi, I’m requesting a form at domain-a from a route at domain-b and set a csrf token, which will be set in a hidden input in the formsnippet: [ // Return the snippet with the Form Template 'pattern' => 'path/form', 'method' => 'GET', 'action' => function () use($kirby) { $sess = $kir…

Ah, well, ok, I just found this topic … :exploding_head:

Csrf doesn't match when sending requests from another domain

Cris October 10, 2022, 7:46am 2

Ah, well, ok, I just found this topic…