From 5fbba35acdbae1f506d41bf26b386c55eb22e1fc Mon Sep 17 00:00:00 2001
From: Camil Staps
Date: Wed, 20 May 2015 17:46:14 +0200
Subject: added disabling CSRF to installation instructions

---
 README.md | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index e63875f..6014fed 100644
--- a/README.md
+++ b/README.md
@@ -32,10 +32,18 @@ RESTful PHP API for Botleagues
 
 * In `config/botleaguesapi.php`, set `allowed_origin` to (an array of) the allowed origin(s) of API requests. Use `*` for a wildcard.
 
-* In `/.env`, set the appropriate configuration values:
+* In `.env`, set the appropriate configuration values:
 
   * `APP_ENV`, `APP_DEBUG`, `APP_KEY`, `APP_URL`
   * `DB_HOST`, `DB_DATABASE`, `DB_USERNAME`, `DB_PASSWORD`
   * `API_VERSION=v1`, `API_DEBUG`, `API_DOMAIN`
 
+* In your `app/Http/Middleware/VerifyCsrfToken.php`, replace the `handle()` function with:
+
+        public function handle($request, Closure $next) {
+            return $next($request);
+        }
+
+  This disables the default CSRF middleware.
+
 After this, you should be good to go. Add configuration settings and the like as usual.
-- 
cgit v1.2.3