Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming CSRF token cookie is editable from a cookie manager tool in firefox
CSRF token cookie is editable from a cookie manager tool in firefox
  • El Forum
    Guest
  •  
#1
12-10-2011, 02:52 AM

[eluser]vicky_ratnesh[/eluser]
Hi All,

I am facing a problem in CodeIgniter's CSRF Cookie token. Everything is working fine, only the issue is, that we are able to edit and insert some junk code for the cookie csrf_token_value [some name] by using any cookie manager [fire-fox addon], which is a kind of security threat. Can any one tell me how to make the cookie non-editable or any other solution to protect my cookie values.

Manny Manny thanks...
  • El Forum
    Guest
  •  
#2
03-20-2012, 01:39 AM

[eluser]vicky_ratnesh[/eluser]
Hi All,

Can anybody tell me what is the maximum size of cookie in CI. I am working on a project and i have to save huge amount of data in cookie. Even i have tried but after a particular values cookies are not saving. Please guide.
  • El Forum
    Guest
  •  
#3
03-20-2012, 01:56 AM

[eluser]WanWizard[/eluser]
The cookie size is limited by the browser, not by CI. There are some browser differences, but commonly accepted is a 4Kb limit.
  • El Forum
    Guest
  •  
#4
03-20-2012, 02:18 AM

[eluser]vicky_ratnesh[/eluser]
So yo mean to say...for a domain browser will accept the data upto 4 kb. and if it is more than 4 kb..it will be not considered by the browsers..?
  • El Forum
    Guest
  •  
#5
03-20-2012, 02:38 AM

[eluser]InsiteFX[/eluser]
Cookie Sizes




Theme © iAndrew 2016 - Forum software by © MyBB