Disable the protection
In some cases, you might want to disable the protection for the
backend or frontend. You can achieve this by setting the following
options in your config.php. By default, both options are set to true.
...
'csrfProtection' => [
'frontend' => false,
'backend' => false
],
...