Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Development Issues CSRF - Multiple form CI 3.0
CSRF - Multiple form CI 3.0
  • Offline Diederik
    Senior Member
  • ****
  • Posts: 299
    Threads: 0
    Joined: Jan 2015
    Reputation: 20
#2
12-16-2015, 01:08 AM

You should set

Code:
$config['csrf_regenerate'] = FALSE;

The token then wont be updated on each form submission (but will still be unique per visitor).

Quote:Tokens may be either regenerated on every submission (default) or kept the same throughout the life of the CSRF cookie. The default regeneration of tokens provides stricter security, but may result in usability concerns as other tokens become invalid (back/forward navigation, multiple tabs/windows, asynchronous actions, etc). You may alter this behavior by editing the following config parameter
https://www.codeigniter.com/user_guide/l...rgery-csrf
Reply


Messages In This Thread
CSRF - Multiple form CI 3.0 - by eltoto79 - 12-15-2015, 04:14 PM
RE: CSRF - Multiple form CI 3.0 - by Diederik - 12-16-2015, 01:08 AM
RE: CSRF - Multiple form CI 3.0 - by eltoto79 - 12-16-2015, 02:33 AM



Theme © iAndrew 2016 - Forum software by © MyBB