Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming CSRF cookie name = token name!
CSRF cookie name = token name!
  • El Forum
    Guest
  •  
#1
02-04-2011, 02:34 PM

[eluser]arbme666[/eluser]
$config['csrf_token_name'] is set to $config['csrf_token_name'].

I found this is Security.php in __construct()

Code:
// Append application specific cookie prefix to token name
$this->csrf_cookie_name = (config_item('cookie_prefix')) ? config_item('cookie_prefix').$this->csrf_token_name : $this->csrf_token_name;

Should it not be...

Code:
// Append application specific cookie prefix to token name
$this->csrf_token_name = (config_item('cookie_prefix')) ? config_item('cookie_prefix').$this->csrf_token_name : $this->csrf_token_name;


Messages In This Thread
CSRF cookie name = token name! - by El Forum - 02-04-2011, 02:34 PM
CSRF cookie name = token name! - by El Forum - 02-04-2011, 04:12 PM
CSRF cookie name = token name! - by El Forum - 02-05-2011, 05:50 AM
CSRF cookie name = token name! - by El Forum - 02-05-2011, 07:50 PM
CSRF cookie name = token name! - by El Forum - 02-06-2011, 12:55 PM



Theme © iAndrew 2016 - Forum software by © MyBB