+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: CodeIgniter 4 (https://forum.codeigniter.com/forumdisplay.php?fid=28)
+--- Forum: CodeIgniter 4 Support (https://forum.codeigniter.com/forumdisplay.php?fid=30)
+--- Thread: Always validate hidden form field (/showthread.php?tid=79931)
Always validate hidden form field - superior - 08-18-2021
Hi,
For my application i've chosen to use reCAPTCHA v3 on each form submit (on-top of CSRF), now my idea is to always check if the token has been submitted so i can validate the request and score. Similar to the CSRF check i think because that's always checked on the background. I think this should be done through a filter but not all pages have a form element so it's only required on form submits.
Can someone help me on my way to what part of documentation i've got to search in?
RE: Always validate hidden form field - Avega Soft - 08-18-2021
You can use form helper (form_open) or read this manual https://codeigniter.com/user_guide/libraries/security.html?highlight=csrf