Laravel testing for csrf mismatch

I shorten the Laravel session to 1 minute so I can test the behavior of an expired token. I am seeing odd behavior on the login page. When expired laravel is issuing a 302 redirect on the ajax login request to the insecure path of my webpage with http. This is definitely not correct. I would have expected a "csrf token expirtation" error.

Is a 302 expected behavior?

I am on the Laravel 8.