protected function _csrfField()
{
if (!empty($this->request['_Token']['unlockedFields'])) {
foreach ((array) $this->request['_Token']['unlockedFields'] as $unlocked) {
$this->_unlockedFields[] = $unlocked;
}
}
if (empty($this->request->params['_csrfToken'])) {
return '';
}
return $this->hidden('_csrfToken', ['value' => $this->request->params['_csrfToken'], 'secure' => static::SECURE_SKIP]);
}