From e9aeb8fb7bf9a89df491648df2364909b5f33b57 Mon Sep 17 00:00:00 2001
From: Jason Varga <jason@pixelfear.com>
Date: Mon, 11 Jul 2022 15:08:42 -0400
Subject: [PATCH] move route out to where it bypasses csrf

---
 routes/routes.php | 2 ++
 routes/web.php    | 2 --
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/routes/routes.php b/routes/routes.php
index 17c0260380..4dee3896b2 100644
--- a/routes/routes.php
+++ b/routes/routes.php
@@ -30,6 +30,8 @@
     });
 }
 
+Route::prefix(config('statamic.routes.action'))->post('nocache', '\Statamic\StaticCaching\NoCache\Controller');
+
 Route::middleware(config('statamic.routes.middleware', 'web'))
     ->namespace('Statamic\Http\Controllers')
     ->group(__DIR__.'/web.php');
diff --git a/routes/web.php b/routes/web.php
index 59dd3cce22..0839506aa7 100755
--- a/routes/web.php
+++ b/routes/web.php
@@ -48,8 +48,6 @@
         Statamic::additionalActionRoutes();
     });
 
-    Route::prefix(config('statamic.routes.action'))->post('nocache', '\Statamic\StaticCaching\NoCache\Controller');
-
     if (OAuth::enabled()) {
         Route::get(config('statamic.oauth.routes.login'), 'OAuthController@redirectToProvider')->name('oauth.login');
         Route::get(config('statamic.oauth.routes.callback'), 'OAuthController@handleProviderCallback')->name('oauth.callback');