dummybot/bootstrap/app.php
javiservices 00fcbc9a7c
Some checks are pending
Deploy DummyBot / Build & Deploy to ${{ env.DEPLOY_HOST }} (push) Waiting to run
fix(deploy): excluir CSRF en /webhook/* + script self-contained
- bootstrap/app.php: validateCsrfTokens except webhook/*
- WebhookController: ejecuta deploy-runner.sh (vive en repo)
- deploy-runner.sh: hace git pull + composer + npm + migrate + cache
- docker-compose.yml: solo monta el repo (sin script externo)
2026-06-18 12:16:48 +02:00

30 lines
999 B
PHP

<?php
use Illuminate\Foundation\Application;
use Illuminate\Foundation\Configuration\Exceptions;
use Illuminate\Foundation\Configuration\Middleware;
use Illuminate\Http\Request;
return Application::configure(basePath: dirname(__DIR__))
->withRouting(
web: __DIR__.'/../routes/web.php',
api: __DIR__.'/../routes/api.php',
commands: __DIR__.'/../routes/console.php',
health: '/up',
)
->withMiddleware(function (Middleware $middleware): void {
$middleware->alias([
'auth.device' => \App\Http\Middleware\AuthenticateDevice::class,
]);
// Excluir CSRF para el webhook de Gitea (autenticado por HMAC)
$middleware->validateCsrfTokens(except: [
'webhook/*',
]);
})
->withExceptions(function (Exceptions $exceptions): void {
$exceptions->shouldRenderJsonWhen(
fn (Request $request) => $request->is('api/*') || $request->is('api/device/*'),
);
})->create();