FbIN/htmly
1
0
Fork 0
mirror of https://github.com/danpros/htmly.git synced 2026-04-18 19:46:21 +05:30
Code Issues Projects Releases Packages Wiki Activity

added CSRF Token

Browse source
This commit is contained in:
Matthias Vogel 2014-07-12 13:03:49 +02:00
commit e852052790
11 changed files with 88 additions and 16 deletions
Download patch file Download diff file Expand all files Collapse all files

23
system/includes/functions.php
View file

@ -1702,4 +1702,27 @@ function file_cache($request) {
readfile($cachefile);
die;
}
}
function generate_csrf_token()
{
$_SESSION[config("site.url")]['csrf_token'] = sha1(microtime(true).mt_rand(10000,90000));
}
function get_csrf()
{
if(! isset($_SESSION[config("site.url")]['csrf_token']) || empty($_SESSION[config("site.url")]['csrf_token']))
{
generate_csrf_token();
}
return $_SESSION[config("site.url")]['csrf_token'];
}
function is_csrf_proper($csrf_token)
{
if($csrf_token == get_csrf())
{
return true;
}
return false;
}