If I wanted to pull some data from Kirby via a specific route into a 3rd party application using CURL or similar I am assuming this will fail due to csrf issues, is there a way to disable csrf for a given route?
Do you mean an API endpoint? Then no, Kirby’s REST API requires authentication. This is also true for custom API endpoints.
However, just using a simple route should work without any authentication/csrf validation. But depending on what your route does, it might not be recommendable.
Thanks, I assumed this was the case, I guess the page doesn’t need to use the API since all it does is reads a logfile of data off the server.