• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Facebook and CSRF Conflict

#1
[eluser]Unknown[/eluser]
There seem to be quite a few threads around regarding the CSRF issue with Facebook app integrations. I know several people have done substantial work on new libraries, add-ons, etc but what I am looking for is a simple, straight forward solution that can be implemented on an existing application. My project has had some significant modification to the core outside of CodeIgniter and has a couple of thousand files and depends heavily on CSRF throughout so what I am really looking for is something that can be manually integrated in as simple and straight forward a manner as possible. Thanks in advance for any and all input and suggestions.

#2
[eluser]skunkbad[/eluser]
If it was me, I'd try to extend the Security class, and make a way to turn off the CSRF protection in certain cases. I hate the way CI handles CSRF, so I use my own CSRF library, which I turn on/off where I want it on/off.


Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2019 MyBB Group.