Fixes #4827: default config for functional tests of both basic and advanced app now turns off CSRF validation while providing commented out alternative setting cookie domain to localhost

2025-11-02 21:41:19 +08:00 · 2014-10-28 02:03:02 +03:00
parent dd9251ad6b
commit b829d9d45a
2 changed files with 24 additions and 2 deletions
--- a/apps/basic/tests/codeception/config/functional.php
+++ b/apps/basic/tests/codeception/config/functional.php
@ -9,6 +9,17 @@ return yii\helpers\ArrayHelper::merge(
    require(__DIR__ . '/../../../config/web.php'),
    require(__DIR__ . '/config.php'),
    [
-
+        'components' => [
+            'request' => [
+                // it's not recommended to run functional tests with CSRF validation enabled
+                'enableCsrfValidation' => false,
+                // but if you absolutely need it set cookie domain to localhost
+                /*
+                'csrfCookie' => [
+                    'domain' => 'localhost',
+                ],
+                */
+            ],
+        ],
    ]
 );