protected function addCookieToResponse($request, $response) { $response->headers->setCookie(new Cookie('XSRF-TOKEN', $request->session()->token(), time() + 60 * 120, '/', null, false, false)); return $response; }