ParagonIE\AntiCSRF\AntiCSRF::insertToken PHP Method

AntiCSRF Class Documentation Usage Examples Of ParagonIE\AntiCSRF\AntiCSRF::insertToken Datei anzeigen Open project: paragonie/anti-csrf

insertToken() public method

Insert a CSRF token to a form

public insertToken ( string $lockTo = '', boolean $echo = true ) : string
$lockTo	string	This CSRF token is only valid for this HTTP request endpoint
$echo	boolean	if true, echo instead of returning
return	string

    public function insertToken(string $lockTo = '', bool $echo = true) : string
    {
        $token_array = $this->getTokenArray($lockTo);
        $ret = \implode(\array_map(function ($key, $value) {
            return "<!--\n-->" . "<input type=\"hidden\"" . " name=\"" . self::noHTML($key) . "\"" . " value=\"" . self::noHTML($value) . "\"" . " />";
        }, \array_keys($token_array), $token_array));
        if ($echo) {
            echo $ret;
            return '';
        }
        return $ret;
    }

Usage Example

Beispiel #1

Datei anzeigen

Datei: AntiCSRFTest.php Projekt: jorik041/anti-csrf

 /**
  * @covers \Resonantcore\AntiCSRF\AntiCSRF::insertToken()
  */
 public function testInsertToken()
 {
     @session_start();
     ob_start();
     AntiCSRF::insertToken();
     $token_html = ob_get_clean();
     $this->assertFalse(empty($_SESSION[AntiCSRF::SESSION_INDEX]));
     $this->assertContains("<input", $token_html);
 }

All Usage Examples Of ParagonIE\AntiCSRF\AntiCSRF::insertToken

AntiCSRF

__construct

generateToken

getFormIndex

getFormToken

getSessionIndex

getTokenArray

insertToken

noHTML

reconfigure

recycleTokens

validateRequest