wait #5414

diff --git a/routes/web.php b/routes/web.php
index 262847bb0e4afa9ef93236edf32e1b736d1fa968..427b886190814abd1947b2e96c9a9211665665bf 100644 (file)
--- a/routes/web.php
+++ b/routes/web.php
@@ -3,6 +3,7 @@
 //Route::any('{page}/{subs?}',  'PageController@catchall')
 //    ->where(['page' => '^(((?=(?!admin))(?=(?!\/)).))*$', 'subs' => '.*']);
 use App\Http\Middleware\CheckIfAdmin;
+use App\Http\Middleware\VerifyCsrfToken;
 
 Route::group([
     'prefix' => config('backpack.base.route_prefix', 'admin'),
@@ -10,7 +11,7 @@ Route::group([
     'namespace' => '\App\Http\Controllers\Admin',
 ], function () { // custom admin routes
     Route::any('tools/{tool}/{args?}', 'ToolsController@index')->where(['args' => '.*']);
-    Route::any('opentools/{tool}/{args?}', 'OpenToolsController@index')->where(['args' => '.*'])->withoutMiddleware([CheckIfAdmin::class]);
+    Route::any('opentools/{tool}/{args?}', 'OpenToolsController@index')->where(['args' => '.*'])->withoutMiddleware([CheckIfAdmin::class, VerifyCsrfToken::class]);
     Route::any('maintenance/{function}/{args?}', 'MaintenanceController@index')->where(['args' => '.*']);
     Route::any('openmaintenance/{function}/{args?}', 'OpenMaintenanceController@index')->where(['args' => '.*'])->withoutMiddleware([CheckIfAdmin::class]);
     Route::post('toolbox_setting', 'ToolboxSettingsController@set');