update file

.env.example

@@ -4,7 +4,7 @@
 APP_NAME=Axm
 APP_URL=http://localhost:8080
 
-APP_KEY=hex2bin:6b1715d8d0eff6ed104287ea90a210ae28b9b124c6fe5c62bf4ad1539df5f5db
+APP_KEY=hex2bin:693fa79783c93e6ee94be6c079f8eb0dc3a9dd43afed728ca4da324b836317c5
 APP_ENVIRONMENT=debug
 APP_DOWN=false
 APP_ENABLE_EXCEPTION_HANDLER=true
@@ -35,6 +35,8 @@ REDIS_PORT=6379
 #--------------------------------------------------------------------
 SESSION_DRIVER=file
 SESSION_LIFETIME=120
+SESSION_DOMAIN="${APP_URL}"
+SESSION_SECURE_COOKIE=false
 
 #--------------------------------------------------------------------
 # ENCRYPTION
@@ -50,7 +52,7 @@ SESSION_LIFETIME=120
 SECURITY_CSRF_PROTECTION=cookie
 SECURITY_TOKEN_RANDOM=true
 SECURITY_TOKEN_NAME=csrf_token_name
-SECURITY_HEADER_NAME=X-CSRF-TOKEN
+SECURITY_HEADER_NAME=XSRF-TOKEN
 SECURITY_EXPIRES=7200
 SECURITY_REDIRECT=true
 

app/config/Session.php

@@ -14,7 +14,7 @@
      * the session
      * @var int
      */
-    'expiration' => env('SESSION_LIFETIME', 3),
+    'expiration' => env('SESSION_LIFETIME', 120),
 
     /**
      --------------------------------------------------------------------------
@@ -74,4 +74,14 @@
      */
     'secure' => env('SESSION_SECURE_COOKIE', false),
 
-];
+    /**
+    --------------------------------------------------------------------------
+      SECURITY HEADER NAME
+    --------------------------------------------------------------------------
+     *
+     * Security Header Name
+     * The name of the security header used for cookie validation.
+     * @var string
+     */
+    'header_name_cookie' => env('SECURITY_HEADER_NAME', 'X-CSRF-TOKEN'), // default value
+];