Why is there this error and how to fix it?

I have sails version 0.12.3

Forbidden
CSRF mismatch

/**
 * UserController
*
 * @description :: Server-side logic for managing users
 * @help :: See http://sailsjs.org/#!/documentation/concepts/Controllers
*/

module.exports = {

 'new': function(req,res){
Res. view();
},

 create: function(req,res,next){
 // Create a User with the params sent from
 // the signup form --> new.ejs
 User.create( req.params.all(), function userCreated (err, user){

 // If there is an error
 if(err) return next(err);

 // After successfully creating the user
 // redirect to the show action
Res. json(user);
});
}
};


csrf is enabled
/****************************************************************************
* *
* Enabled CSRF protection for your site? *
* *
****************************************************************************/

 module.exports.csrf = true;

/****************************************************************************
* *
* You may also specify more fine-grained settings for CSRF, including the *
* domains which are allowed to request the CSRF token via AJAX. These *
* settings override the general CORS settings in your config/cors.js file. *
* *
****************************************************************************/

 module.exports.csrf = {
 grantTokenViaAjax: true,
 origin: "
 }


How to set csrf?
Thanks in advance!
July 9th 19 at 13:03

Find more questions by tags Node.jsSails.js