TokenMismatchException in VerifyCsrfToken.php line 67: while integrating paytm with laravel 5.3

Question

token mismatch exception in verifyCsrfToken

I had integrated paytm by referring "https://github.com/anandsiddharth/laravel-paytm-wallet" with laravel 5.3 and when doing payment it redirect to paytm site and when it redirect back to my site it gives error "TokenMismatchException in VerifyCsrfToken.php line 67"

View.php

               <form action="{{action('OrderController@order')}}" method="post" name="payuForm" >
                  <input type="hidden" name="_token" value="{{ csrf_token() }}">
                  <input type="hidden" name="firstname" id="firstname" value="{{$data1->first_name}}" />
                  <input type="hidden" name="email" id="email" value="{{$data1->email}}" />
                  <input type="text"   name="amount" value="<?php echo $data[0]->cost?>" readonly/>
                  <input type="text"   name="productinfo" value="<?php echo $data[0]->mid?>" readonly />
                  <input type="text"   name="phone" value="{{$data1->mobile}}" readonly/>
                  <center><button class="btn btn-colored btn-theme-colored text-uppercase pay">Pay</button></center>
                </form>

Controller.php

<?php

namespace App\Http\Controllers;

use PaytmWallet;
use Illuminate\Http\Request;
use App\EventRegistration;
use Session;
use DB;

class OrderController extends Controller
{

    /**
     * Redirect the user to the Payment Gateway.
     *
     * @return Response
     */
    public function register()
    {
        return view('register');
    }

    /**
     * Redirect the user to the Payment Gateway.
     *
     * @return Response
     */
    public function order(Request $request)
    {

        $input = $request->all();
        //pri($input); die();
        $input['order_id'] = str_random(16);
        $input['fee'] = $input['amount'];
        Session::put('packid', $input['productinfo']);
        EventRegistration::create($input);

        $payment = PaytmWallet::with('receive');
        $payment->prepare([
          'order' => $input['order_id'],
          'user' => $input['firstname'],
          'mobile_number' => $input['phone'],
          'email' => $input['email'],
          'amount' => $input['fee'],
          'callback_url' => url('payment/status')
        ]);
        //pri($payment);exit;
        return $payment->receive();
    }

    /**
     * Obtain the payment information.
     *
     * @return Object
     */
    public function paymentCallback()
    {

        $transaction = PaytmWallet::with('receive');

        $response = $transaction->response();
        $order_id = $transaction->getOrderId();

        if($transaction->isSuccessful()){
            dd('payment Done');
        }else if($transaction->isFailed()){
           dd('payment Failed');
        }
    }    
}

Routes.php

Route::get('event-registration', 'OrderController@register');
Route::post('payment', 'OrderController@order');
Route::post('payment/status', 'OrderController@paymentCallback');

what middleware you are using ? – Niklesh Raut Nov 28 '17 at 11:03 — Niklesh Raut, Nov 28 '17 at 11:03

Tarang patel · Accepted Answer · 2017-12-01T04:59:56.803

5

hey @Deepak Patel i search lots of information related your question.i found one solution for you. version 5.1 Laravel's VerifyCsrfToken middleware allows to routes.you need to add the routes to $except array in your App\Http\MiddlewareVerifyCsrfToken class:

<?php namespace App\Http\Middleware;

use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as BaseVerifier;

class VerifyCsrfToken extends BaseVerifier
{
  protected $except = [
    'your-route-name/*',
  ];
}

it's disable csrf in laravel for specific route.Hope it's work.

edited Dec 01 '17 at 04:59

answered Dec 01 '17 at 04:52

Tarang patel

408
1
3
22

it's my pleasure @DeepakPatel – Tarang patel Dec 01 '17 at 05:19

score 3 · Answer 2 · edited Jun 20 '20 at 09:12

3

I also get this error, but I was solved the problem.

php artisan cache:clear.
Clear cache & cookies browser.
Using Private Browser (Mozilla) / Incognito Window (Chrome)
Open your form/page and then submit.

hope this work for you.

edited Jun 20 '20 at 09:12

Community

1
1

answered Nov 28 '17 at 07:25

Tarang patel

408
1
3
22

Niklesh Raut · Answer 3 · 2017-11-28T07:32:51.307

0

Add / to not append url by existing url

Route::get('/event-registration', 'OrderController@register');
Route::post('/payment', 'OrderController@order');
Route::post('/payment/status', 'OrderController@paymentCallback');

And use /payment as action in form tag as you already created route for this 'OrderController@order' and did not use any named route.

<form action="/payment" method="post" name="payuForm" >

Also check you request data in you route

Route::post('payment', function(Illuminate\Http\Request $request){
    return dd($request->all());
});

edited Nov 28 '17 at 07:32

answered Nov 28 '17 at 07:24

Niklesh Raut

34,013
16
75
109

made changes as you suggested @user2486
But still get the same error
– Deepak Nov 28 '17 at 08:54

TokenMismatchException in VerifyCsrfToken.php line 67: while integrating paytm with laravel 5.3

3 Answers3