refactor(session): change xsrf cookie name to XSRF-TOKEN (#1642)

NeoIsRecursive · web-flow · commit 061b576d5530 · 2025-10-14T19:50:31.000+02:00
diff --git a/packages/http/src/IsRequest.php b/packages/http/src/IsRequest.php
@@ -9,7 +9,6 @@
 use Tempest\Validation\SkipValidation;
 
 use function Tempest\get;
-use function Tempest\Support\Arr\every;
 use function Tempest\Support\Arr\get_by_key;
 use function Tempest\Support\Arr\has_key;
 use function Tempest\Support\str;
diff --git a/packages/http/src/Session/VerifyCsrfMiddleware.php b/packages/http/src/Session/VerifyCsrfMiddleware.php
@@ -23,7 +23,7 @@
 #[Priority(Priority::FRAMEWORK)]
 final readonly class VerifyCsrfMiddleware implements HttpMiddleware
 {
-    public const string CSRF_COOKIE_KEY = 'xsrf-token';
+    public const string CSRF_COOKIE_KEY = 'XSRF-TOKEN';
     public const string CSRF_HEADER_KEY = 'x-xsrf-token';
 
     public function __construct(

Original file line number	Diff line number	Diff line change
`@@ -23,7 +23,7 @@`
`23`	`23`	`#[Priority(Priority::FRAMEWORK)]`
`24`	`24`	`final readonly class VerifyCsrfMiddleware implements HttpMiddleware`
`25`	`25`	`{`
`26`		`- public const string CSRF_COOKIE_KEY = 'xsrf-token';`
	`26`	`+ public const string CSRF_COOKIE_KEY = 'XSRF-TOKEN';`
`27`	`27`	`public const string CSRF_HEADER_KEY = 'x-xsrf-token';`
`28`	`28`
`29`	`29`	`public function __construct(`