method spoofing

2024-08-22 19:05:08 -05:00 · 2024-08-22 19:05:08 -05:00 · 2d8ab4ed61
commit 2d8ab4ed61
parent c23d029890
1 changed files with 3 additions and 1 deletions
--- a/resources/views/posts/show.blade.php
+++ b/resources/views/posts/show.blade.php
@ -25,7 +25,9 @@

            @auth
                @if ($post->user_id === auth()->user()->id)
-                    <form action="#">
+                    <form action="{{ route('posts.destroy', $post) }}" method="POST">
+                        @csrf
+                        @method('DELETE')
                        <input type="submit" value="Delete post"
                            class="bg-red-500 hover:bg-red-600 p-2 rounded text-white font-bold mt-4 cursor-pointer">
                    </form>