protected function checkCsrfToken(Request $request) { if (!$request->headers->has(self::CSRF_TOKEN_HEADER)) { return false; } return $this->csrfTokenManager->isTokenValid(new CsrfToken($this->csrfTokenIntention, $request->headers->get(self::CSRF_TOKEN_HEADER))); }