Welcome Guest, Not a member yet? Register   Sign In
CSRF in CI 2
#1

[eluser]wbremen[/eluser]
Hey,

I saw that the new Version of Codeigniter includes some CSRF protection in the form class but I could not find any further information about it.

Does it include a random token hidden field which is checked?

Thanks
#2

[eluser]Rok Biderman[/eluser]
http://ellislab.com/codeigniter/user-gui...urity.html

Here is everything i needed to make it work.
#3

[eluser]wbremen[/eluser]
Thanks, but I was not asking for how it works but what exactly it does
#4

[eluser]Rok Biderman[/eluser]
I just wanted to say. Take 2 mins and try it, you'll see that it actually creates hidden input with random value. As session riding protection is more or less everywhere.

Edited: wrote something inappropriate
#5

[eluser]wbremen[/eluser]
Okay - thanks anyway - that's what I was looking for since I always had to implement that into the forms myself before when using 1.7




Theme © iAndrew 2016 - Forum software by © MyBB