Merge pull request #5428 from pixelfed/staging

Update VerifyCsrfToken middleware, add oauth token. Fixes #5426

app/Http/Middleware/VerifyCsrfToken.php

@@ -12,6 +12,7 @@ class VerifyCsrfToken extends Middleware
      * @var array
      */
     protected $except = [
-        '/api/v1/*'
+        '/api/v1/*',
+        'oauth/token'
     ];
 }