CodeIgniter Forums
CSRF and form_validation question - Printable Version

+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: Archived Discussions (https://forum.codeigniter.com/forum-20.html)
+--- Forum: Archived Development & Programming (https://forum.codeigniter.com/forum-23.html)
+--- Thread: CSRF and form_validation question (/thread-55011.html)



CSRF and form_validation question - El Forum - 10-05-2012

[eluser]Keinstah[/eluser]
do i have to use form_validation->run just to validate the csrf?


CSRF and form_validation question - El Forum - 10-05-2012

[eluser]DaveLittle[/eluser]
I'm pretty sure that Codeigniter automatically validates the CSRF (although I could be wrong)

If you use the form helper and use: form_open() it will automatically give you the csrf in a hidden input, on my website if the CSRF is wrong, or not existance, Ajax throws back error 500


CSRF and form_validation question - El Forum - 10-05-2012

[eluser]Keinstah[/eluser]
yeah im getting error 500 in chrome but in firefox its good.

i even tried echoing $_POST and there's csrf post.


CSRF and form_validation question - El Forum - 10-05-2012

[eluser]Unknown[/eluser]
I’m dam sure that Codeigniter automatically validates the CSRF..


CSRF and form_validation question - El Forum - 10-05-2012

[eluser]Keinstah[/eluser]
im not sure if its only my browser's cookie fcked up, because i tried it on other pc it works fine.