The csrf_field()
function creates a hidden field in your form with the name _token
that contains a csrf token. Because of how the <form>
element in html works all form fields will be sent as variables in the url if you are using method=GET
.
However, if you change your method to POST
, the form fields will be sent in the http request body.
TLDR; if you don't want your form fields to be visible in the URL, you cannot use GET.
Sign in to participate in this thread!
The Laravel portal for problem solving, knowledge sharing and community building.
The community