Andrew Fletcher published: 16 May 2022 (updated) 19 May 2022 1 minute read
To get the X-CSRF token, first, you need to login as a member. Follow the steps outlined under User options - login, logout and user details.
Calling a query
The query string is: {domain}/rest/session/token
See the notes on set-up, for the staging and production URLs. Using the current staging URL in the set-up screen, as an example of the query string using the following criteria
Replacing the following variables:
- {domain} ~ your-site.com
https://your-site.com/rest/session/tokenNote, in Drupal 9 the path above doesn't work anymore. Instead use session/token as follows:
https://your-site.com/session/token
Headers
Do not send any headers in this query.
Example of the body output
X-2tk2nOwtKtrgJjxCfeyNwfayP25X9IdPUnW4D9ScU