Getting a 419 error on clean install

[sunscreem]

• Jetstream Version: 2.16
• Jetstream Stack: Inertia
• Uses Teams: no
• Laravel Version: 9.50.2
• PHP Version: 8.2.0
• Database Driver & Version: MySql 8.0.32

Description:

Immediately after installing Jetstream in a new laravel application, I get a 419 Page Expired error when trying to register a new user.

Strong chance I've done something stupid.

Steps To Reproduce:

1. Install Laravel
2. Add DB credentials to the env.
3. Install Jetstream - php artisan jetstream:install inertia
4. run npm install (this said everything was up-to-date)
5. run npm run build
6. run php artisan migrate

Everything seems to be fine - no errors during the above steps.

I see the usual laravel welcome screen:

I click register

I complete some details and get

Here's the payload:

``` email:"sunscreem@gmail.com" name:"Robert Cooper" password: "password" password_confirmation:"password" terms:false ```

Here's the request header:

``` POST /register HTTP/1.1 Accept: text/html, application/xhtml+xml Accept-Encoding: gzip, deflate Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,la;q=0.7 Cache-Control: no-cache Connection: keep-alive Content-Length: 139 Content-Type: application/json Cookie: _gcl_au=1.1.1288845970.1669232531; _fbp=fb.1.1669232531313.1729353093; s_cc=true; s_sq=%5B%5BB%5D%5D; remember_web_59ba36addc2b2f9401580f014c7f58ea4e30989d=eyJpdiI6ImhpalZ3WURSTTcvamw5eGhvblZPS2c9PSIsInZhbHVlIjoieEVud1c0R0FtNHJvcDJNUmgzdWpyN3JFMmFuSkNqMlAyT1pjaXh1Z3hSRTA5ZXhYYTd2dTBOeCs2OSszVE9tclprRmkydUxOMHFva3hjYU9NWjhXOWVKa29jcFgxYkpIc1N3b3dJOXoveEdUL1VIOHJMUXcybzVXNjBpemRMV0JnczdHTEp4VEFZKzZlQXY2aCtCTitEVm42YTBuMHY1UEFLeHVLTGtwNGkvTlFtNHh4T016QXNSYy9FenNOYWptRUQzMDVUMmJSZEN2S0hLN2ROd3grRFUxNHUzbDZ3ZFFzR0FlcStEd1FJNG1uOVBEVmE4cWppemxWU2daWGF1L2J0cnVPWXdxUW15dXJzSnhCdGlGOEE9PSIsIm1hYyI6IjFhYWU1MTk2NjhiOWI1ZWU4NmVkYWQxNDA1MTBhMzVhYjU5NGJjOWEyMTdmZDEzYTZiYzllZWEzM2U0YjYxM2MiLCJ0YWciOiIifQ%3D%3D; _ga_WS3CS88VQR=GS1.1.1670239551.1.1.1670239925.0.0.0; _ga=GA1.1.281029790.1669232531; _ga_DXVND016P1=GS1.1.1672940091.11.1.1672940110.0.0.0; XSRF-TOKEN=eyJpdiI6IlBiZ1RuenZ2ellRdlF1VCtkOWVia3c9PSIsInZhbHVlIjoibll5SEg4cDdWeHI4eXFXbVZ0QzB6aHlZV1M3K3pTOWRnNnhVNmgrZCs4K0FaR2dkYkx2bHlla2U1QmZoK1lXVk9sVzJqVUR0MlJiQVRHVk1mWWV1SStvNEZaS1BKKzRXQWoxYS9FNjk0ZjJDdnN2NElQT3pzZ0NZL2RkYmlJdFQiLCJtYWMiOiI5YzY3MGQxNTUxZTZjYjgwNGExOWRiM2RmODU1YzFiMjc3NmE5ZTIxMTU4OWY1OTYxYTJlZDQ0MDgzMzk0MjYyIiwidGFnIjoiIn0%3D; lci_session=eyJpdiI6InNxT01FaVdWVUthcnJxRlNFUXhMTEE9PSIsInZhbHVlIjoiTVU1R2J1SjZoK2RsVkZIL25JRG91YUZkNUVyM1dKWDVyQzFSVXVqUHRCR1NNcjlhcnVvUVJBd1NvNEsxKzkvYlRWMGw2MnBYa1VTZHJrMnlscXZ5S0RPQTdVVExpOTNpN3Z3UWJ6N3pmUnp3aWZIblRZZjJab3ZSMUl6S2VWNnIiLCJtYWMiOiI0ODYwZTdlZjU0ZTVkN2Q0ZjY5MTg2MWIxNmYwMWJkOGQ2Nzc4YmMwMDAwNWFiZDk4OGM1OTc4OTY1NWNjNGQ2IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6Im54WExteVl4eEp3REFjdmRpUXBRK2c9PSIsInZhbHVlIjoiZU1GVWdrUm5ER1M0ekx3cW1CWWo1Y203RXViTHEvMWlqc05qTU5XeHBFSm9FVEhmanlYM1FjZ3FHYWEwTGRmMGJHVXJLdVhJWnhCcGhiL0R6dWNXOCtZZ1JoR1dDTlNucEp3d2FhOFd4c3doZmxrc3NMbjFjNHRVazM4amNVaEQiLCJtYWMiOiI1ZWM3YTAwNzEzYjJiYjc3ZTEzM2ZlNmRmYmM3YzY1ZjlkNjc0NDlmMGFhM2Q4MmEwYjZmMzY1OTc4NGFhMGUyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjVQWjkwMndmZ2E3bXlVMkRkQzB1T1E9PSIsInZhbHVlIjoiZng2Z3I3SGgvcTRBSXFpd3pTYVp6c0VKYWVzZnZCVllGWjFsZ2RvcnJOK3poWFUyWjNXV2hVRFpmZ2ZTQVBRZW54SEc5ejJPZmxtcElVNURVSHRWZmhkaG1nMmFja2ZEMlBhOExFZHEyb1VpbG9XczIvMGFIM2ZybnJ0eFJKQ1kiLCJtYWMiOiJmNWM3MDQwZTQ0MTEyMDYxYmNiNTRhNzZlOTI2MmEyODhkZjczZWZmZDRjZWZkYjg5ZWZhOTQ4MTQ3MzUxMTBhIiwidGFnIjoiIn0%3D Host: jetstream.sunscreem.xyz Origin: http://jetstream.sunscreem.xyz Pragma: no-cache Referer: http://jetstream.sunscreem.xyz/register User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 X-Inertia: true X-Inertia-Version: 0b1f325c904ecd1ca3b55baf5d6b8dd7 X-Requested-With: XMLHttpRequest X-XSRF-TOKEN: eyJpdiI6IlBiZ1RuenZ2ellRdlF1VCtkOWVia3c9PSIsInZhbHVlIjoibll5SEg4cDdWeHI4eXFXbVZ0QzB6aHlZV1M3K3pTOWRnNnhVNmgrZCs4K0FaR2dkYkx2bHlla2U1QmZoK1lXVk9sVzJqVUR0MlJiQVRHVk1mWWV1SStvNEZaS1BKKzRXQWoxYS9FNjk0ZjJDdnN2NElQT3pzZ0NZL2RkYmlJdFQiLCJtYWMiOiI5YzY3MGQxNTUxZTZjYjgwNGExOWRiM2RmODU1YzFiMjc3NmE5ZTIxMTU4OWY1OTYxYTJlZDQ0MDgzMzk0MjYyIiwidGFnIjoiIn0= ```

Here's the response header:

``` HTTP/1.1 419 unknown status Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, private date: Mon, 06 Feb 2023 18:06:59 GMT Set-Cookie: laravel_session=eyJpdiI6IkNXVitEcmp1TURuUExzZVR0SFJyT3c9PSIsInZhbHVlIjoiNWhXNGl6NUJoTWdZY2VtRlV5b2p4ZkZ1S0RuaS8yNTFzMEIrOVVhL0tNWTN2MEcxNURnaEU5ZG5aOWM0c29zcXVUYkxDdDNvSG44Vzdvc3JhMHdlYmhWYnUyWkJhdkRrZTVzalZOL3Q5MjRsMGdRNWpkUFVSTnJUVkY0Y1V2QzkiLCJtYWMiOiI5MmZlYTViYjY4OWQzZjAzOTBhZTc5MWIwN2JkY2JmZmRiMTViOGQzMjkwYTU0OWYxMTQ4ZGRlMDg2NTNjZTU5IiwidGFnIjoiIn0%3D; expires=Mon, 06 Feb 2023 20:06:59 GMT; Max-Age=7200; path=/; httponly; samesite=lax ```

[jessarcher]

Hey @sunscreem,

I'm having trouble replicating this one using php artisan serve. Your request and response payloads indicate a setup involving nginx and a public DNS name, so perhaps you could test with just php artisan serve to see whether that narrows things down.

[sunscreem]

Thanks @jessarcher. Using php artisan serve I'm not seeing the issue.

I'm guessing then this is a problem with my setup. Strange as I've all sorts of sites on this dev server and not seen this before.

[tsukinose81]

I had the same problem when using MariaDB and the problem was solved by using SQLite. The situation did not change with apache2 or nginx. I have not been able to confirm php artisan serve.

[mrpritchett]

I'm also having this issue on a clean install on Laravel Valet. php artisan serve works as a workaround, but is not a solution.

@driesvints what info would you need to help with this?

It seems to be isolated to Firefox.

[jhoanborges]

Same error...