[eluser]Unknown[/eluser]
Quote:Cross-site request forgery (CSRF)
You can enable csrf protection by opening your application/config/config.php file and setting this:
$config['csrf_protection'] = TRUE;
If you use the form helper the form_open() function will automatically insert a hidden csrf field in your forms.
This is what CI user guide syas.
Should I add anything in the controller to check the tokens.I understand token automatically creates in the view.My doubt is how it generates and check in the controller.I use CI 2.0.3
please give me your suggestions
