“The page has expired due to inactivity” - Laravel 5.6

Question

I'm using Laravel Collective Form and running Laravel 5.6. There is no error in local MAMP. However, after I setup in Production (Ubuntu) on AWS, the form was not working. When I submitted the form, it always went to "The page has expired due to inactivity".

Before I asked, I've already tried the other suggested methods, but still didn't work.

Clear Cache

php artisan cache:clear
php artisan config:clear 
php artisan route:clear 
php artisan view:clear

Set Directory Permissions

sudo chmod -R 777 storage
sudo chmod -R 777 bootstrap/cache

Session Cookie Domain

'domain' => env('SESSION_DOMAIN', null),

Session Secure Value

'secure' => env('SESSION_SECURE_COOKIE', false),

What else am I missing?

Update: looks like it's a CSRF token mismatch issue.

Possible duplicate of ["The page has expired due to inactivity" - Laravel 5.5](https://stackoverflow.com/questions/46141705/the-page-has-expired-due-to-inactivity-laravel-5-5) — Niklesh Raut, Apr 21 '18 at 03:15
Anytime you define an HTML form in your application, you should include a hidden CSRF token field in the form so that the CSRF protection middleware can validate the request. You may use the csrf_field helper to generate the token field: — Udhav Sarvaiya, Apr 21 '18 at 07:26
@UdhavSarvaiya the CSRF token filed is already included in the form. — trojan, Apr 21 '18 at 07:40
try it - exclude your route in app/Http/Middleware/VerifyCsrfToken.php protected $except = [ 'your/route' ]; — Udhav Sarvaiya, Apr 21 '18 at 07:47
@UdhavSarvaiya it works while excluding the token, but if I exclude the token, the form validation is not working. Is there any way to resolve the token issue? — trojan, Apr 21 '18 at 11:15
@trojan For more details:- https://laravel.com/docs/5.5/csrf — Udhav Sarvaiya, Apr 21 '18 at 11:23

score 0 · Answer 1 · answered Apr 21 '18 at 17:02

Inside the route file, add the followings:

Route::get('csrf', function() {
    return Session::token();
});

Someone told me that this is the issue with current session token and provide the above solution. But, I am not sure why the session token is different from the CSRF token on the form.

“The page has expired due to inactivity” - Laravel 5.6

1 Answers1